How AI technology works inside the virus

The main feature of the Trojan is the integrated TensorFlow.js library. This allows the malware to analyze the smartphone interface in real time. The malware takes a series of hidden screenshots in the background, after which the neural network identifies the borders of an advertising banner, a close button or a transition.

• Visual identification: AI recognizes ad units by shape and logos.

• Bypassing protection: Standard anti-fraud systems do not see software interference in the code because the click simulates a physical touch on the screen.

• Adaptability: The virus easily adapts to different types of ads on Facebook, Instagram, and third-party networks.

Where the threat lurks and how infection occurs

The main source of distribution has become unofficial app stores and modified versions of popular software. Hackers are introducing malicious code into free games, which are often advertised through social networks. Even popular platforms such as Xiaomi GetApps are faced with the penetration of such smart viruses.

Once installed, the program requests access to Accessibility Services. Once the user grants this permission, the AI ​​Trojan gains full control of the screen. When the smartphone is in standby mode or charging, the virus activates invisible windows and begins its work, bringing its owners millions of dollars in net profit.

Why it’s dangerous for your smartphone

Although the main goal of attackers is to steal money from advertisers, the average user suffers no less. The constant operation of a neural network on a mobile processor requires enormous computing resources. This leads to rapid overheating of the device and degradation of the lithium-ion battery.

• Excessive traffic costs: Loading video ads in the background can eat up to 5-10 GB of mobile internet per day.

• Hardware wear and tear: Constant load on the processor halves the lifespan of a smartphone.

• Loss of privacy: Broadcast mode allows hackers to see everything that happens on your display.

How to protect your device from AI scammers

To avoid becoming a victim of the modern clicker, you should practice strict digital hygiene. First, never grant Accessibility permissions to apps that don’t need them for their primary function. Second, regularly check your battery usage statistics: if an unknown app is consuming 30-40% of your battery, it’s a red flag.

Experts also recommend using antivirus software that can monitor TensorFlow activity in atypical processes. Remember that free modifications of premium services that promise access to content without paying in dollars are often a lure for installing malware.

The future of mobile threats with AI

The emergence of such Trojans is just the beginning. It is expected that in the future AI will be used not only for clicks, but also for bypassing biometric protection or automatically entering bank card data. The cybersecurity industry is already preparing appropriate measures, but user vigilance remains the main barrier for attackers.