Sonic Spy

SonicSpy is a type of mobile malware that infects the Android operating system. It is primarily distributed through third-party app stores and can also be spread through phishing messages and social engineering tactics.

Once installed on the device...

Once installed on a device, SonicSpy can gain access to sensitive information such as text messages, contacts, and call logs, as well as record phone calls and audio from the device's microphone, take photos and videos using the device's camera, and remotely control the infected device.

It was first discovered in 2017 by mobile security firm Lookout, and it was found to have been primarily distributed in the middle east. SonicSpy malware is known to have been used to target individuals in the Middle East and it was found in multiple apps available on third-party app stores.

SonicSpy has been found to have multiple capabilities, including:

• Remotely accessing the device's camera and microphone
  
• Recording phone calls
  
• Sending and intercepting text messages
  
• Remotely controlling the device
  
• Exfiltrating personal data from the device
  
• Downloading and installing additional apps
  
• Updating itself
  

SonicSpy malware is a sophisticated malware that was found to have used various methods to evade detection, such as using encryption and code obfuscation, as well as using legitimate developer credentials. It is important to be careful when downloading apps, especially from third-party app stores, and to keep the device security updated. In addition, it is important to be wary of suspicious messages and emails, and to not click on links or download attachments from unknown or untrusted sources.