Author Topic: Marcher banking trojan masquerades as Adobe Flash Player for Android  (Read 192 times)

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 10398

Not the first malware that’s tried to fool Android users this way…

A variant of the Marcher banking trojan is targeting Android users by masquerading as a mobile Adobe Flash Player app.

This version of the malware arrives via popcash[dot]net, an advertising network which is known to serve "popunder" ads that display behind a main browser window so that the user sees them when they try to exit.

The ads drop malware payloads that pose as Adobe Flash Player. If a user clicks on the dropper URL, they see a message warning them that their Flash Player is out of date.

https://www.grahamcluley.com/marcher-malware-adobe-flash-player/

Microsoft MVP Consumer Security 2006-2016
Microsoft Windows Insider MVP 2016-


There are any comments for this topic. Do you want to be the first?