April 30, 2024 By Bill Toulas
A new Android backdoor malware named 'Wpeeper' has been spotted in at least two unofficial app stores mimicking the Uptodown App Store, a popular third-party app store for Android devices with over 220 million downloads.
Wpeeper stands out for its novel use of compromised WordPress sites to act as relays for its actual command and control (C2) servers, acting as an evasion mechanism.
The Android malware was discovered on April 18, 2024, by QAX's XLab team while examining a previously unknown ELF file embedded into APKs (Android package files), which had zero detections on Virus Total.
