PromptSpy is the first known Android malware to embed generative AI (Google Gemini) into its execution flow to perform context-aware UI automation and persist in the recent apps list. ESET found the campaign targeting Argentina via phishing sites and a Chase-themed app called MorganArg, and Play Protect blocks known variants though PromptSpy never appeared on Google Play. #PromptSpy #Gemini
Keypoints
- PromptSpy integrates Google Gemini to analyze UI XML dumps and return JSON-formatted actions for automated UI interactions.
- The malware uses a feedback loop with Gemini to repeatedly attempt and confirm locking itself in Androidβs recent apps list for persistence.
- Distribution targeted Argentina through phishing domains (mgardownload[.]com β m-mgarg[.]com) and an app named MorganArg impersonating Chase Bank.
- Core capabilities include Accessibility Services abuse, a VNC module connecting to C2 54.67.2.84 with AES encryption, screen recording, and credential interception.
- Removal requires booting to Safe Mode; detection is complicated because key malicious logic resides in cloud AI prompts rather than solely in local code.
Read More: https://thecyberexpress.com/first-android-malware-promptspy/