Trend Micro Warns Of Malicious Android Apps In Google Play Coded To Mine Virtual Coins

Security researchers at Trend Micro report finding a new Android malware family designed to mine crytocurrencies like Bitcoin, Litecoin, and Dogecoin. The malicious mining code is being repackaged in copies of popular apps like Football Manger Handheld and TuneIn Radio. To hide the code, malware writers modify the Google Mobile Ads portion of the app, allowing them to slip into Google Play.

Once installed, the hidden code gets busy mining virtual currencies in the background. It detects when there's an Internet connection so that the CPU miner can connect to a dynamic domain, which then redirects to an anonymous Dogecoin (or other virtual currency) mining pool, Trend Micro says.

Android Phone

In one example, as of mid-February, the tactic allowed a malware writer to collect thousands of Dogecoins. He then switched mining pools where he's been cashing in Bitcoins on a regular basis. According to Trend Micro, that particular instance involved a booby-trapped app found from a third-party app source, but researchers have noticed the same behavior in apps currently available in Google Play -- specifically, Songs and Prized - Real Rewards & Prices.

"These apps have been downloaded by millions of users, which means that there may be many Android devices out there being used to mine cryptocurreny for cybercriminals," Trend Micro says. "We detect this new malware family as ANDROIDOS_KAGECOIN.HBTB."

There are signs that your device could be infected. Some things to look for include degraded performance, running hot, charging slowly, and faster than usual battery drains.
Via:  Trend Micro
JordanGisseman 8 months ago

Honestly, this is pretty genious! Totally unethical and terrible to use peoples' devices like this, but genius nonetheless.

KoltIrons1 8 months ago

i dont really understand how this mining thing works exactly, but i saw the other day that 1 bitcoin is like 600usd or something and that blew my mind, so if this software let these guys get even 2 bitcoins thats like over a thousand dollars.. crazy

JaySleven 8 months ago

Wow. How smart is that! I wonder how much more that would make than a mining machine on a set period of time. I personally am not a fan of crypto currency. Not after all those bitcoins went missing. Kinda makes me wanna factory reset my device seeing as I have been experiencing unusual battery life.

StaticFX 8 months ago

cant really see how effective it would be.. considering whats needed as far as GPU power to mine them (maybe if 50K people had the app on their phone)... but yeah, it was a good idea


DustinMaxfield 8 months ago

Flappy Bird's True Purpose? haha

JefferyPruett 8 months ago

I think I might be a victim to this considering the fact I had some of the apps listed ._. especially the degraded performance D:

kalqlate 8 months ago

Me too! :( I've got TuneIn Radio installed. Time to delete. I wonder if deletion is all that's required to remedy the problem.

CharlesYu 8 months ago

I believe people should expect this by now. Anything new people will find a way to exploit and gain. Its human nature.

StevenWane 8 months ago

Can you just remove the apps and its all sorted? My gf has the radio one and her phones battery life and performance have gone terrible lately. Think she also has more on that list too :/

Post a Comment
or Register to comment