Extended Rapid Response: Zimperium’s Zero-Day Coverage of Oblivion RAT

Zimperium zLabs analyzed Oblivion RAT, a new Android remote-access trojan sold as a MaaS that employs pixel-perfect social-engineering lures and Accessibility Service abuse to grant itself dangerous permissions, uses ZIP-format anti-analysis tricks to thwart static tools, and provides operators with VNC, keylogging, SMS/2FA interception and automated targeting of financial apps; researchers found additional low-coverage variants and published IOCs while noting on-device behavioral detection provides effective protection.