ANDROIDOS_JOPSIK.OPSLB

This spyware displays pop-up advertisements. It uses common file icons to trick a user into thinking that the files are legitimate. This is the Trend Micro detection for Android applications bundled with malicious code.

Mobile Malware Routine

This spyware is a file that collects the following information on an affected mobile device:

• phone number
• location

It bears the file icons of the following applications:

• system update
• popular games

It also steals the following information from the affected device:

• phone number
• location

It blocks the received SMS, not allowing the user to read the received message.

It displays the following:

• popup ads

It displays pop-up advertisements.

Upon installation, it asks for the following permissions:

• android.permission.WRITE_EXTERNAL_STORAGE
• android.permission.WAKE_LOCK
• android.permission.INTERNET
• android.permission.ACCESS_NETWORK_STATE
• android.permission.READ_PHONE_STATE
• android.permission.ACCESS_WIFI_STATE
• android.permission.CHANGE_WIFI_STATE
• android.permission.CHANGE_NETWORK_STATE
• android.permission.RECEIVE_BOOT_COMPLETED
• android.permission.RECEIVE_SMS
• android.permission.DISABLE_KEYGUARD
• android.permission.SYSTEM_ALERT_WINDOW
• android.permission.GET_TASKS
• android.permission.INTERNET
• android.permission.ACCESS_NETWORK_STATE
• android.permission.WRITE_EXTERNAL_STORAGE
• android.permission.READ_PHONE_STATE

It uses common file icons to trick a user into thinking that the files are legitimate.

This is the Trend Micro detection for Android applications bundled with malicious code.