What is XERXES Android Botnet?
XERXES is a sophisticated Android botnet first identified in underground hacking forums. The 2025 version introduces enhanced evasion techniques, expanded attack modules, and improved command-and-control (C2) infrastructure.Key Features of XERXES Android Botnet 2025
1. Advanced Evasion & Persistence
- Anti-Emulation & Anti-Sandbox
- Rootkit Capabilities
- Dynamic Code Loading
2. Multi-Stage Infection & Modular Architecture
- Dropper Apps
- Plugin-Based Attacks
- Auto-Update Mechanism
3. Financial & Data Theft Capabilities
- Overlay Attacks – Fake login screens for banking apps (e.g., PayPal, Revolut).
- Keylogging – Records keystrokes to steal credentials.
4. Botnet & Network Attacks
- DDoS Capabilities
- Proxy & VPN Abuse
- C2 Communication