Home / malware Android.Kemoge
First posted on 16 October 2015.
Source: SymantecAliases :
There are no other names known for Android.Kemoge.
Explanation :
The Trojan is distributed through a third-party app stores. The Trojan may be disguised as a legitimate application.
Android package file
The Trojan may arrive as a package with the following characteristics:
Package name: com.light.browser
Version: 1.6
Note: The package details may differ to the ones listed.
Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:
Start once the device has finished bootingAccess the cameraAccess hardware detailsWrite to external storage devicesInstall applicationsUninstall applicationsCheck the phone's current stateAccess information about networksOpen network connections informationRead or write to the system settingsDisplay alerts
Installation
Once installed, the application will not display an icon.
Functionality
The Trojan periodically displays advertisements on the compromised device.
The Trojan may download and install potentaially malicious applications without the user's consent.Last update 16 October 2015