Home Malware Programs Spyware Mandrake

Mandrake

Posted: April 3, 2020

Cybersecurity experts have uncovered a new cybercrime campaign that seems to be focused on Australian Android users at the moment. The new spyware toolkit, dubbed Mandrake, appears to be a very advanced hacking tool that has been in use since 2016 – during the past four years, it has been updated on a regular basis. Its authors have added new features, removed outdated ones, and modified the program regularly to ensure that it will allow them to continue to carry out harmful operations on the infected Android devices.

The Mandrake Spyware is Used in Targeted Attacks

The Mandrake campaign is executed on a relatively small scale – although the threat may be able to reach tens of thousands of devices, researchers have identified just 500 active copies of the spyware. This may occur because Mandrake is only deployed on devices that the attackers are interested in – it is possible that the authors of this threat only launch a fully-fledged attack after monitoring their targets for an extended period.

Once Mandrake is up and running, it enables the attackers to perform operations on the infected Android device. Their ultimate goal appears to be to collect information from the victim – bank account, payment details, login credentials, contacts, conversations, images, etc. It is possible that the group behind the Mandrake spyware may specialize in blackmailing, but money fraud is another thing that they are likely to engage in.

It seems that the operators of Mandrake have an individual approach towards each one of their victims – yet another clue that they take a lot of time to monitor their victims before taking any action. An attack of such sophistication is unlikely to be executed by a lone wolf, and it is safe to assume that the Mandrake spyware is being operated by a highly-skilled group of cybercriminals who have a lot of experience in the field.

There is not enough information to determine the infection vectors the Mandrake authors use – they may rely on phishing messages spread via email, social media or text messages. We advise users to protect their Android devices with the help of a trustworthy mobile security application.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Mandrake may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria.

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.

Use SpyHunter to Detect and Remove PC Threats

If you are concerned that malware or PC threats similar to Mandrake may have infected your computer, we recommend you start an in-depth system scan with SpyHunter. SpyHunter is an advanced malware protection and remediation application that offers subscribers a comprehensive method for protecting PCs from malware, in addition to providing one-on-one technical support service.

Download SpyHunter's Malware Scanner

Note: SpyHunter's free version is only for malware detection. If SpyHunter detects malware on your PC, you will need to purchase SpyHunter's malware tool to remove the malware threats. Learn more on SpyHunter. If you would like to uninstall SpyHunter for any reason, please follow these uninstall instructions. To learn more about our policies and practices, visit our EULA, Privacy Policy and Threat Assessment Criteria .

Why can't I open any program including SpyHunter? You may have a malware file running in memory that kills any programs that you try to launch on your PC. Tip: Download SpyHunter from a clean computer, copy it to a USB thumb drive, DVD or CD, then install it on the infected PC and run SpyHunter's malware scanner.