+Ch0pin🕷️

Apr 6

6 min read

Dissecting the Escobar bot

The com.escobar.pablo is yet another banking Trojan which, between else abuses the Android’s Accessibility Service (a11y in short) in order to take over the mobile device’s UI. This service has been designed to assist users with disabilities and it is so powerful, that can literally act in behalf of the user by clicking, reading and generally reacting on any UI event that takes place in the mobile device.

TL;DR, a banking-type Trojan comes with a list of targeted applications (usually banking apps). The a11y, allows the trojan to read which app is currently in the device’s…

--

--

More from +Ch0pin🕷️

https://www.linkedin.com/in/valsamaras/, developer of https://github.com/Ch0pin/medusa. Posts are solely my own and do not express the views of my employer.

Love podcasts or audiobooks? Learn on the go with our new app.

Try Knowable

Recommended from Medium

Alex Frank

in

Dev Genius

Make the Labeled Range Slider interactive

Eka Kurniawan Arisandy

in

AMIKOM Computer Club

Recycler View

Eren Utku

in

Android Bits

Android Widgets

ANUPREET DUBE

in

Mobile App Development Using FLUTTER

Flutter Integration with Docker 🐳 (Blog — 2)

Ben Hawkins

in

Clear Blue Design

Creating Widgets with Custom Builder Functions in Flutter

Maxi Rosson

in

Dipien

Versioning Android apps

Alex Frank

in

Better Programming

Touch Interactions in Jetpack Compose

Ikhiloya Imokhai

in

The Startup

Extending Android WorkManager for Dependent Periodic Tasks

AboutHelpTermsPrivacy

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store
+Ch0pin🕷️

+Ch0pin🕷️

https://www.linkedin.com/in/valsamaras/, developer of https://github.com/Ch0pin/medusa. Posts are solely my own and do not express the views of my employer.

More from Medium

mcdulltii

CTFSGCTF 2022 Write-ups

June

Solving reversing challenges from MalwareTech.com

Olusegun Omojokun

OverTheWire: Bandit

Jeffrey Mader

Maltego Basics: Building a Network Diagram

Help

Status

Writers

Blog

Careers

Privacy

Terms

About

Knowable