The SpinOk spyware module “collects information on devices’ files and is capable of transferring it to malicious actors.” Furthermore, this spyware is capable of replacing and uploading clipboard content to a remote server. Naturally to say, this is extremely concerning. This spyware is distributed in the form of a marketing SDK. It can be embedded in a variety of apps and games, including those available in the Google Play Store.
On the surface, SpinOk is designed to keep users interested in apps through mini games, system tasks, alleged prizes, and reward drawings. Once activated, this trojan SDK connects to a C&C server and sends a massive amount of data.