Session Abstract: In this talk, I will explore the technical details of Android banking trojans and focus on the Godfather malware that surfaced in late 2022. Banking trojans have been wreaking havoc on users for years with millions of downloads within the Google Play Store. I'll analyze a real-world sample and uncover its malicious tactics designed to steal user credentials by abusing the AccessibilityService, spying on SMS messages, RAT behavior, and tricky fake HTML overlays. By the end of the talk, attendees will have a full understanding of Android banking trojans and think twice before granting app permissions.
Summary: Join me for a deep dive into the world Android banking trojans by studying the Godfather malware. We'll reverse engineer a real-world sample to uncover its malicious techniques. By the end, you'll be more cautious about granting app permissions.