AndroidOS_FakeKSec.GCLA
Publish Date: 29 de февраля de 2024
UDS:Trojan-Dropper.AndroidOS.Wroba.p (KASPERSKY)
PLATFORM:
Android
OVER ALL RISK RATING:
DAMAGE POTENTIAL::
DISTRIBUTION POTENTIAL::
REPORTED INFECTION:
INFORMATION EXPOSURE:
Low
Medium
High
Critical
Threat Type:
Trojan Spy
Destructiveness:
No
Encrypted:
In the wild::
Yes
OVERVIEW
INFECTION CHANNEL: Eliminado por otro tipo de malware, Descargado de Internet
It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
TECHNICAL DETAILS
File size: 2,315,757 bytes
File type: APK
Memory resident: No
INITIAL SAMPLES RECEIVED DATE: 29 de февраля de 2024
PAYLOAD: Collects system information
Detalles de entrada
It arrives on a system as a file dropped by other malware or as a file downloaded unknowingly by users when visiting malicious sites.
Otros detalles
Hace lo siguiente:
- After installation, the application will not be visible on the phone's home page. However, it can be located within the app management section, confirming its successful installation.
- It disguises as a fake security app with the label KDDI Security.
- It monitors and collect sensitive information.
- Accesses Phone Number
- Statically get default SMS package
- Send, Read and Delete SMS/MMS
- Read and Delete Call Logs
- Collect Contacts
- Application is also signed by a Debug Certificate
SOLUTION
Minimum scan engine: 9.800
First VSAPI Pattern File: 19.188.04
First VSAPI Pattern Release Date: 29 de февраля de 2024
VSAPI OPR PATTERN-VERSION: 19.189.00
VSAPI OPR PATTERN DATE: 01 de марта de 2024
SOLUCIÓN TREND MICRO MOBILE SECURITY
Trend Micro ha lanzado una solución integrada para dispositivos móviles que explora de forma automática y en tiempo real los dispositivos inalámbricos para protegerlos de código malicioso y virus de Internet o de archivos internos ocultos.
Descargar la solución Trend Micro Security más reciente desde este sitio.
Did this description help? Tell us how we did.