Loapi Mobile Trojan

Loapi is modular malware that has numerous malicious capabilities. The modular architecture of the malware allows it to perform different malicious actions.

Threat ID:: CC-1871
Category:
Threat Severity:: Low
Threat Vector:
Published:: 20 December 2017 12:00 AM

Report a cyber attack: call 0300 303 5222 or email [email protected]

This content has been archived

This article no longer conforms to NHS Digital's standards for cyber alerts, and may contain outdated or inaccurate information. Use of this information contained in this page is at your own risk

Summary

Loapi is modular malware that has numerous malicious capabilities. The modular architecture of the malware allows it to perform different malicious actions.

Affected platforms

The following platforms are known to be affected:

Android

All Android Devices

Threat details

Actions include advertisements, Distributed Denial-of-Service (DDoS) attacks, mine cryptocurrency, send SMS messages, and subscribe to paid services, among others.
Due to the modular architecture of the malware, the attackers can add new features to it at any time. The malware was observed to impersonate antivirus and adult-related applications.

Remediation steps

Type	Step
	Before installing applications, read user reviews which may highlight anything suspicious. Ensure an anti-virus application is present on Android devices Ensure that user data is regularly backed up. Be aware of what permissions an application is requesting.

Last edited: 17 February 2020 11:33 am