LodaRAT is a Windows malware that was recently spotted targeting Android users in Bangladesh.
Dubbed LodaRAT, the trojan was equipped with credential-stealing capabilities earlier, but now it is eyeing Android users to enhance the attackers’ espionage activities further. Researchers have reported that the latest version of LodaRAT has an enhanced audio recording capability.
Kasablanca is the hacker group that has developed the malware and has deployed it through a new campaign in Bangladesh. LodaRAT is delivered through phishing emails and has various data stealing and recording capabilities.
The malware can run a wide range of commands, mainly designed to record audio/video and steal sensitive data. The recent variant of LodaRat can steal cookies and passwords from the web browser.
The new version of LodaRAT can capture images/screenshots, read and intercept SMS messages, access call logs, and call specific numbers. The Windows version can enable remote access to the targeted device through RDP and has a Sound command that exploits the BASS audio library to capture audio from the microphone.
NPAV recommends all android users to upgrade their security as the malware can have a severe impact. Download NPAV’s mobile application on your android devices to keep them safe and secure from all kinds of cyberattacks.
Use NPAV and join us on a mission to secure the cyber world.