Where to Buy Trend Micro Products

For Home

For Small Business

1-888-762-8736
(M-F 8:00am-5:00pm CST)

For Enterprise

1-877-218-7353
(M-F 8:00am-5:00pm CST)

Not in the United States?
Select the country/language of your choice:

Asia Pacific Region

Europe

The Americas

Not in the United States?
Select the country/language of your choice:

Asia/Pacific

Europe

America

Login

For Home

For Business

For Partners

Threat Encyclopedia

ANDROIDOS_KSAPP.A

ANALYSIS BY

Veo Zhang


THREAT SUBTYPE:

Information Stealer, Malicious Downloader, Spying Tool

PLATFORM:

Android OS

FIRST DETECTION COUNT/S:

1

OVERALL RISK RATING:
DAMAGE POTENTIAL:
DISTRIBUTION POTENTIAL:
REPORTED INFECTION:

  • Threat Type:Trojan

  • Destructiveness:No

  • Encrypted:

  • In the wild: Yes

OVERVIEW


TECHNICAL DETAILS

File Size:

3543345 bytes

Memory Resident:

Yes

Initial Samples Received Date:

08 Nov 2012

NOTES:
This is the Trend Micro detection for 3rd-party apps infected with malicious code known as KSAPP. Once executed, the app may download possibly malicious files from the following URLs:

  • http://{BLOCKED}y.{BLOCKED}i.com:5222/kspp/do?imei=xxxx&wid=yyyy&type=&step=0
  • http://{BLOCKED}n.{BLOCKED}1302.com:5222/kspp/do?imei=xxxx&wid=yyyy&type=&step=0
  • http://{BLOCKED}1.com:5101/ks/do?imei=xxxx&wid=yyyy&type=&step=0
The remote script may perform the following:
  • Download other malicious APK
  • Prompt users to install the downloaded APK
  • Popup website to users
  • Invoke more extended API through remote control script.

SOLUTION

Minimum Scan Engine:

9.300

FIRST VSAPI PATTERN FILE:

1.359.00

FIRST VSAPI PATTERN DATE:

30 Jan 2013

Trend Micro Mobile Security Solution

Trend Micro Mobile Security Personal Edition protects Android smartphones and tablets from malicious and Trojanized applications. The App Scanner is free and detects malicious and Trojanized apps as they are downloaded, while SmartSurfing blocks malicious websites using your device's Android browser.

Download and install the Trend Micro Mobile Security App via Google Play.


Did this description help? Tell us how we did.

Connect with us on