The Loapi Trojan is being spread through advertising campaigns under the guise of antivirus solutions or apps for adults. Its creators have implemented nearly the entire spectrum of techniques for attacking devices: "the Trojan can subscribe users to paid services, send SMS messages to any number, generate traffic and make money from showing advertisements, use the computing power of a device to mine cryptocurrencies, as well as perform a variety of actions on the internet on behalf of the user/device The only thing missing is user espionage, but the modular architecture of this Trojan means it's possible to add this sort of functionality at any time", warn the security researchers.
"Because of the constant load caused by the mining module and generated traffic, the battery bulged and deformed the phone cover", wrote Kaspersky. Kaspersky said the malware was found in more than 20 different locations on the web.
If it detects a real anti-virus app, it claims it is malware and urges the user to delete it.
Separate research from earlier this year found that cryptocurrency mining software was present in popular websites, including Showtime and the torrenting site ThePirateBay. After installation, the app will ask for administrator rights, and it will frustrate you to death because it will not take no for an answer. It will fight off attempts to revoke device manager privileges by locking the screen, closing the settings window, or threatening to wipe the phone's memory. Once, the malware is inside the device, it will download several modules from the command and control server, depending on the task that the operator wants to perform on the phone.
Apart from all the capabilities, the malware is also capable of destroying your mobile device. Considering that the prompt loops until the uses gives in, it's likely that some users will acquiesce just to get the nag screen to go away.
Fortunately, Loapi has not made it onto the official Google Play Store, which means that users who download from the official app store are not affected by the malware. That said, installing mysterious apps from unknown sources is not advisable.
Security experts also advise that users stay away from unofficial app stores for their tendency to host software loaded with malware.
The Loapi Trojan can force Android handsets to mine cryptocurrency on the quiet - putting the processor under so much strain the phone overheats and breaks.