New Trojan Found in Pirated Android Apps
New Trojan Found in Pirated Android Apps
A new Trojan is making its way around Android-based smartphones through pirated apps downloaded from third-party Chinese apps stores. The Trojan, dubbed “Geinimi,” reportedly creates botnets which allow hackers to control users' phones. Lookout Mobile Security says the new trojan is the most sophisticated malware to strike Android devices so far.
Once the Trojan gets on a phone, it can receive commands from a remote server that let's the operator of that server control the phone. The app is being distributed through pirated versions of legitimate apps, mainly games, though the original versions of the apps appear to be unaffected.
How the Trojan works is it collects data in the background when the infected application is launched. This data can include location coordinates and unique identifiers for the phone and its SIM card. Then the Trojan will also try to connect to a remote server every five minutes using one of ten embedded domain names.
If Geinimi is successful in connecting to the server, it then uploads all the information it has gathered. The malware also suggests that the user uninstall an app, then sends the server a list of all installed apps on the phone.
Some of the applications in which the Trojan has been found are Monkey Jump 2, Sex Positions, President vs. Aliens, City Defense, and Baseball Superstars 2010. Insiders explain that the Trojan is an addon that could be uploaded to any app on the market, but it has so far only shown up in pirated versions in Chinese app markets.
A new Trojan is making its way around Android-based smartphones through pirated apps downloaded from third-party Chinese apps stores. The Trojan, dubbed “Geinimi,” reportedly creates botnets which allow hackers to control users' phones. Lookout Mobile Security says the new trojan is the most sophisticated malware to strike Android devices so far.
Once the Trojan gets on a phone, it can receive commands from a remote server that let's the operator of that server control the phone. The app is being distributed through pirated versions of legitimate apps, mainly games, though the original versions of the apps appear to be unaffected.
How the Trojan works is it collects data in the background when the infected application is launched. This data can include location coordinates and unique identifiers for the phone and its SIM card. Then the Trojan will also try to connect to a remote server every five minutes using one of ten embedded domain names.
If Geinimi is successful in connecting to the server, it then uploads all the information it has gathered. The malware also suggests that the user uninstall an app, then sends the server a list of all installed apps on the phone.
Some of the applications in which the Trojan has been found are Monkey Jump 2, Sex Positions, President vs. Aliens, City Defense, and Baseball Superstars 2010. Insiders explain that the Trojan is an addon that could be uploaded to any app on the market, but it has so far only shown up in pirated versions in Chinese app markets.
Comments
Top Stories
Latest DT's
-
1 month ago by Geno -
1 month ago by dallaseste
-
2 months ago by Geno
-
2 months ago by Geno
-
2 months ago by Geno
-
2 months ago by Geno
-
2 months ago by Geno
-
2 months ago by Geno
-
2 months ago by dallaseste
Top Authors
Subscribe
Games
Alias
3 Foot Ninja 2
ALIAS 2
Air Dodge
Battle Tanks
Bomber Bob
Cable Capers
Gem Mania
Hacker
Hostile Skies
Mission Mars
Bowling
Samurai Warrior
The Pharoh's Tomb
Monkey Lander
Muay Thai
Action
Donkey Kong Banana Barrage
501 Dart Challenge
Rooftop Skater
Zelda
Donkey Kong
Xtreme Pinball
Tetris
Connect 4
Battleships
Frogger
Penguin Push
Online Video Poker
Spank The Monkey
Mob Pay Back
Dealer
Yeti Sports Seal Bounce
Hold Your Drink Steady
Solitaire
Canyon Glider
3D Sudoku
Metal Slug Rampage
Street Fighter II
Flashman
Disc Golf
Table Tennis
Ninja Air Combat
Celebrity Hitman Terrorist Alert
Spider Solitaire
Tubin
Presidential Knockout
Global Player
Ma Balls
Baseball
Beckham Fit
0 Comments
Click here to sign up now.