PromptSpy Android spyware using Google Gemini runtime persistence
Malware Activity
Summary
Hide ▲
Show ▼
PromptSpy is an Android spyware/backdoor family that uses Google Gemini at runtime to help keep the app in the recent apps list and automate Android UI persistence. The malware also supports remote access through a VNC module, can intercept PINs and passwords, capture screenshots, record screen activity, and uses invisible overlays to resist uninstall and permission changes. Samples were associated with January-February 2026 and were reportedly distributed via mgardownload[.]com and a fake JPMorgan Chase Bank page on m-mgarg[.]com. The activity shows how generative AI can be embedded directly into mobile malware execution to make on-device evasion more adaptive.
Related Happenings
Google rolls out Android Intrusion Logging in Android Advanced Protection Mode
Security Tool/Service
First: 14.05.2026 16:30
Last: 14.05.2026 16:30
Sources 1
About this happening:
Google has released **Android Intrusion Logging** for **Android Advanced Protection Mode**, giving **high-risk Android users** encrypted forensic logs to investigate suspected **s...
Google rolls out Android Intrusion Logging in Android Advanced Protection Mode
Security Tool/ServiceAbout this happening: Google has released **Android Intrusion Logging** for **Android Advanced Protection Mode**, giving **high-risk Android users** encrypted forensic logs to investigate suspected **s...
PromptSpy backdoor for Android with Gemini API automation
Malware Activity
First: 11.05.2026 16:02
Last: 11.05.2026 16:02
Sources 1
About this happening:
The **PromptSpy** backdoor for **Android** was highlighted for using **Gemini APIs** to automate device interaction, increasing the risk of unauthorized control on infected phones...
PromptSpy backdoor for Android with Gemini API automation
Malware ActivityAbout this happening: The **PromptSpy** backdoor for **Android** was highlighted for using **Gemini APIs** to automate device interaction, increasing the risk of unauthorized control on infected phones...
TrickMo Android banking malware adds TON-based covert command-and-control
Malware Activity
First: 11.05.2026 12:03
Last: 11.05.2026 12:03
Sources 1
About this happening:
The **TrickMo Android banking malware** has added **TON-based covert command-and-control**, making its operator infrastructure harder to identify, block, or take down for victims...
TrickMo Android banking malware adds TON-based covert command-and-control
Malware ActivityAbout this happening: The **TrickMo Android banking malware** has added **TON-based covert command-and-control**, making its operator infrastructure harder to identify, block, or take down for victims...
BirdCall Android spyware variant
Malware Activity
First: 05.05.2026 12:04
Last: 05.05.2026 12:04
Sources 1
About this happening:
The **BirdCall** Android spyware variant expanded a known **Windows** backdoor into a mobile surveillance tool with **file exfiltration** and device reconnaissance capabilities. I...
BirdCall Android spyware variant
Malware ActivityAbout this happening: The **BirdCall** Android spyware variant expanded a known **Windows** backdoor into a mobile surveillance tool with **file exfiltration** and device reconnaissance capabilities. I...
FakeWallet crypto wallet phishing campaign targeting users in China
Campaign
First: 21.04.2026 00:52
Last: 21.04.2026 00:52
Sources 1
About this happening:
The **FakeWallet** campaign is actively distributing **26 malicious apps** that impersonate crypto wallets and steal **seed phrases**, putting **users in China** at immediate risk...
FakeWallet crypto wallet phishing campaign targeting users in China
CampaignAbout this happening: The **FakeWallet** campaign is actively distributing **26 malicious apps** that impersonate crypto wallets and steal **seed phrases**, putting **users in China** at immediate risk...
Latest development: 24.04.2026 14:48
Kaspersky said the FakeWallet campaign is gaining momentum with new tactics, including phishing apps published in the Apple App Store, cold wallet impersonation, and phishing notifications, and suspected it may be the work of threat actors linked to SparkKitty because some infected apps use OCR to steal wallet recovery phrases and the two campaigns share native Chinese-speaking operators and cryptocurrency targeting.
Timeline
-
20.02.2026 00:36 1 articles · 3mo ago
VNCSpy sample set appears on VirusTotal
Initial DisclosureThe first version named VNCSpy appears on VirusTotal as three Android malware samples uploaded from Hong Kong, establishing the earliest dated sample evidence for the malware family.
Show sources
- PromptSpy is the first Android malware to use generative AI at runtime — www.bleepingcomputer.com — 20.02.2026 00:36
-
20.02.2026 00:36 1 articles · 3mo ago
More advanced VNCSpy-based samples upload from Argentina
Campaign Scope UpdateFour samples of more advanced malware based on VNCSpy are uploaded to VirusTotal from Argentina, showing that the Android malware family had already progressed beyond the initial sample set by February 10, 2026.
Show sources
- PromptSpy is the first Android malware to use generative AI at runtime — www.bleepingcomputer.com — 20.02.2026 00:36
-
20.02.2026 00:36 3 articles · 3mo ago
PromptSpy is disclosed with Gemini-assisted persistence
Technical Analysis UpdatePromptSpy is disclosed as the first known Android malware to integrate generative AI at runtime, using Google Gemini to generate JSON instructions for app pinning through Android's Accessibility Service while also operating as spyware with a built-in VNC module, credential capture, screenshot capture, screen recording, and anti-removal overlays; the samples are described as distributed through mgardownload[.]com and a fake JPMorgan Chase Bank page on m-mgarg[.]com, although it remains unclear whether the malware is a proof-of-concept or active in the wild.
Show sources
- PromptSpy is the first Android malware to use generative AI at runtime — www.bleepingcomputer.com — 20.02.2026 00:36
- PromptSpy is the first Android malware to use generative AI at runtime — www.bleepingcomputer.com — 20.02.2026 00:36
- Hackers Use AI for Exploit Development, Attack Automation — www.darkreading.com — 11.05.2026 16:00