ANDROIDOS_LEAKERLOCKER.HRX

 Analysis by: Kevin Sun

 THREAT SUBTYPE:

Information Stealer

 PLATFORM:

AndroidOS

 OVERALL RISK RATING:
 DAMAGE POTENTIAL:
 DISTRIBUTION POTENTIAL:
 REPORTED INFECTION:
 INFORMATION EXPOSURE:

  • Threat Type: Ransomware

  • Destructiveness: No

  • Encrypted:

  • In the wild: Yes

  OVERVIEW


This mobile ransomware threatens to send personal data from a victim's phone to everyone in their contact list. It was carried by three apps found in Google Play: “Wallpapers Blur HD”, “Booster & Cleaner Pro”, and “Calls Recorder”.

This Ransomware downloads malicious files.

  TECHNICAL DETAILS

File Size:

3884924 bytes

File Type:

APK

Memory Resident:

Yes

Initial Samples Received Date:

28 Jun 2017

Other Details

This Ransomware does the following:

  • threatening to send personal data on a remote server
  • exposing personal information to everyone on contact lists

Mobile Malware Routine

This Ransomware also steals the following information from the affected device:

  • Contacts
  • Call log
  • Photos
  • SMS

It downloads the following malicious files:

  • support.jar
  • x.awvw.Awvw.jar
  • u.jar

  SOLUTION

Minimum Scan Engine:

9.850

Trend Micro Mobile Security Solution

Trend Micro Mobile Security Personal Edition protects Android and iOS smartphones and tablets from malicious and Trojanized applications. It blocks access to malicious websites, increase device performance, and protects your mobile data. You may download the Trend Micro Mobile Security apps from the following sites:


Did this description help? Tell us how we did.