TI Mindmap HUB
Threat Intelligence Report

OverlayPhantom: The Android Banking Trojan Hiding in Plain Sight

πŸ“… May 27, 2026 πŸ“° cyble.com πŸ” 0 CVE(s) referenced

OverlayPhantom is a highly sophisticated Android banking trojan that uses fake overlays and real-time screen streaming to steal credentials from over 180 financial apps across 10 countries, all while hiding in plain sight by impersonating trusted services and abusing Android’s Accessibility features.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

πŸ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

πŸ“Š Visual Mindmap
🎯 IOC Extraction
βš”οΈ MITRE ATT&CK TTPs
πŸ“¦ STIX 2.1 Bundle