JokerBot – An Android-Based Botnet


Article Preview

Due to the trend that mobile devices are getting more and more popular, smart phone security becomes an important issue nowadays. This paper proposes an Android-based botnet, called JokerBot, to show the possible security problems in mobile devices. This paper describes JokerBot framework. JokerBot designs its own communication mechanism to allow different bots to communicate with each other. An attacker can use JokerBot to trigger many kinds of potential attacks, such as monitoring the SMS messages and location disclosure. Moreover, after a bot is created in a compromised smartphone, it is difficult to locate the botmaster and detect whether the smartphone is infected or not. Finally, this paper proposes some defense mechanisms to protect a smartphone against JokerBot attacks.



Edited by:

Wen-Hsiang Hsieh




R. M. Jiang et al., "JokerBot – An Android-Based Botnet", Applied Mechanics and Materials, Vols. 284-287, pp. 3454-3458, 2013

Online since:

January 2013





[1] Android Market, https: /market. android. com.

[2] Defcon 18, These Are Not The Permission You Are Looking For http: /www. defcon. org/images/ defcon-18/dc-18-presentations/Lineberry/DEFCON-18-Lineberry-Not-The-Permissions-You-Are-Looking-For. pdf.

[3] Georgia Weidman, Transparent Botnet Command and Control for Smartphones over SMS. Proceedings of SHMOOCON 2011, (2011) Jan. 28-30; District of Columbia, USA.

[4] Cui Xiang et al., Andbot: Towards Advanced Mobile Botnets. Proceedings of the 4th USENIX Workshop on Large-Scale Exploits and Emergent Threats, (2011) April 1; Boston, MA, USA.