Researchers in cybersecurity have revealed the inner workings of the Fluhorse malware family on Android. The malware “represents a significant shift as it incorporates the malicious components directly within the Flutter code,” Fortinet FortiGuard Labs analyst Axelle Apvrille wrote in a report released last week.
Early in May 2023, Check Point discovered Fluhorse. This information described its attacks on customers in East Asia through rogue apps posing as ETC and VPBank Neo, which are well-known in Taiwan and Vietnam. Phishing is the malware’s primary entry point. The app’s ultimate objective is to send SMS-delivered two-factor authentication (2FA) codes, credit card information, and login credentials to a remote server controlled by threat actors.