Forensic Analysis of CapraRAT Android Malware

Hudan Studiawan*, George Grispos, Kim Kwang Raymond Choo

*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceedingChapterpeer-review

Abstract

In this chapter, a detailed digital forensic investigation into CapraRAT Android malware, a specialized Remote Access Trojan (RAT), is presented, focusing on its structures, functions, behaviors, propagation methods, and impacts. Employing static analysis, the study uncovers that CapraRAT is designed to stealthily infiltrate Android devices, exploiting various vulnerabilities in the operating system and engaging in malicious activities such as unauthorized data acquisition, location tracking, and surveillance, often masquerading as a legitimate application to deceive users. The findings from this research could be used to help enhance the development of security solutions, increase user awareness, and assist with the implementation of security best practices in Android application development to help counter sophisticated malware threats, such as CapraRAT.

Original languageEnglish
Title of host publicationAdvances in Information Security
PublisherSpringer
Pages333-354
Number of pages22
DOIs
Publication statusPublished - 2025

Publication series

NameAdvances in Information Security
Volume91
ISSN (Print)1568-2633
ISSN (Electronic)2512-2193

Keywords

  • Android
  • CapraRAT
  • Malware analysis
  • Malware forensics

Fingerprint

Dive into the research topics of 'Forensic Analysis of CapraRAT Android Malware'. Together they form a unique fingerprint.

Cite this