Dating privet ru com
As it launches, it requests device administrator rights, and then starts communicating with its C&C server.
‘One-time’ domains also appeared with names made up of random strings of characters and numbers, combined with the top-level domains .cf, .ga, .gq, .ml, or
One of the most interesting and active specimens to date was a mobile Trojan from the Rotexy family.
In a three-month period from August to October 2018, it launched over 70,000 attacks against users located primarily in Russia. The modern version of Rotexy combines the functions of a banking Trojan and ransomware.
Rotexy then sent information about the smartphone to the C&C, including the phone model, number, name of the mobile network operator, versions of the operating system and IMEI.
With each subsequent request, a new subdomain was generated.