Researchers spotted a new mobile malware dubbed WAPDropper that subscribes users to legitimate premium-rate services. The malware is composed of two modules, one responsible for fetching the second-stage malware from the C2 and another for getting the premium dialer component that subscribers victims to premium services from legitimate telecommunications providers in Malaysia and Thailand. Check Point experts observed the malware constructs a 11 pixel dialog which appears almost invisible, but actually contains a tiny web view. In case a CAPTCHA step is required to finalize the subscription it uses the ML services of Super Eagle, a Chinese company, to solve the challenge.”]
Source: https://securityaffairs.co/wordpress/111442/malware/wapdropper-malware.html