Droidjack Github -

DroidJack, a prominent Android Remote Administration Tool (RAT) that evolved from SandroRAT, allows attackers to gain full device control, with variants frequently appearing on GitHub for analysis, leaked source code, and security research. The malware gained notoriety for features allowing total surveillance and its 2016 use in a backdoored Pokémon GO app. For a curated list of research and analysis, visit GitHub Topics droidjack · GitHub Topics

Attackers would distribute the DroidJack-infected APKs through third-party app stores, phishing emails, and malicious links. A common tactic was "bundling," where a popular paid game was offered for "free" on a forum, but the APK file was repackaged to include the DroidJack payload. Once the user installed the game, the malware would run silently in the background, requesting the necessary permissions (which often seemed standard for the legitimate app) to take control of the device. droidjack github