The Android malware Wpeeper is a newly discovered threat that utilizes compromised WordPress sites to conceal its command-and-control (C2) servers, employing a multi-tier C2 architecture with 45 servers identified, including 9 hard-coded redirectors, to mask the true C2 servers, enabling functions like information collection, file management, downloading and executing additional payloads, and self-deletion, emphasizing the need for caution and scrutiny while installing apps from legitimate sources to prevent potential malware risks.
https://thehackernews.com/2024/05/android-malware-wpeeper-uses.html