harmless software ) that allows an attacker to spy on and take full control of the target ’ s Android device . The ISIS supporter used malware analysis at NVISIO , a popular free platform to test Android software for malicious code . The warning was first spotted and described by @ switch_d , a veteran ISIS watcher . This attackAttack.Phishingarrives as a phishing link disguised asAttack.Phishingan invitation to a video chat , according to the warning , a tactic ISIS supporters have fallen victim to in the past . The responses to the warning include a thanks and common sense guidance to “ only accept files from brothers you know ” . This malware runs in multiple stages , Khalil Sehnaoui , a Middle East-based cybersecurity specialist and founder of Krypton Security , told CyberScoop . “ The exploit code is usually small and after successful exploitation it runs a dropper code which will in turn download new applications/malware in order to get more control of the system by escalating privileges ” .