DroidJack

DroidJack is a Remote Administration Tool that gives users full control over Android devices. Such applications do have legitimate uses, as they are incredibly helpful when it comes to obtaining information from a device that is placed in a remote location. Indeed, DroidJack was actually advertised on an official site where it was priced at a hefty $210. Unfortunately, it is not at all difficult for ill-minded actors to obtain remote access applications and modify them in accordance
to their harmful goals.

Versions of DroidJack have been distributed in attack campaigns masquerading as popular legitimate applications such as Super Mario Run or Pokemon GO, two applications with massive user bases. By exploiting such widespread applications when they are not natively available on the Android platform, especially, threat actors could compromise a significant number of unsuspecting users.

If DroidJack infiltrates a device, it results in the hackers obtaining almost full control over it successfully. They can record phone calls or videos through the device's camera, access call logs, obtains SMS data, etc. All of the gathered information could then be exfiltrated.

In 2015 DroidJack became the target of a police operation spanning several European countries as well as the US. The police agencies did not go against the authors of the application and instead focused on people who had bought DroidJack in the past year or so. Action was taken in the United Kingdom, Germany, France, Belgium, Switzerland and the USA.