Loki Bot 2.0 is a sophisticated Android banking trojan and botnet that evolved from earlier versions into a more dangerous threat in 2024. Originally discovered as a Windows malware, Loki Bot has expanded to target mobile banking users with enhanced capabilities. This malware specializes in stealing financial credentials and SMS messages and bypassing two-factor authentication (2FA) protections.
Download Server 1 Download Server 2 Download Server 3
What is Loki Bot 2.0 Android Banker Botnet?
Loki Bot 2.0 is a modular banking trojan that functions as a botnet, allowing attackers to control infected Android devices remotely. It primarily targets banking apps, cryptocurrency wallets, and payment systems to steal sensitive financial information.
Technical Features & Capabilities
1. Financial Data Theft
- Overlay Attacks
- Keylogging
- SMS Interception
2. Device Control & Surveillance
- Remote Control
- Allows attackers to:
- Initiate unauthorized transactions
- Install additional malware
- Lock the device for ransom
- Allows attackers to:
- Screen Recording
- Captures everything displayed on screen
- GPS Tracking
- Monitors the victim’s location in real-time
3. Stealth & Evasion Techniques
- Hides app icon
- Uses Accessibility Services
- Detects and disables security apps
- Encrypted C2 (Command & Control) communication
4. Botnet Functionality
- Mass infection control
- Automated attack campaigns
- DDoS capabilities
