Home / malware Android.Pjapps.B
First posted on 21 March 2014.
Source: SymantecAliases :
There are no other names known for Android.Pjapps.B.
Explanation :
The Trojan is typically bundled with applications available on unregulated third-party Android marketplaces.
Android package file
The Trojan may arrive as a package with the following characteristics:
Package name: com.mobile.app.writer.zhongguoyang
Name: [CHINESE CHARACTERS]
Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:
Monitor and send SMS messagesRead and write the user's browsing history and bookmarksCheck the phone's current stateInstall packagesOpen network connectionsWrite to external storage devices
Installation
Once installed, the application will display an icon of a webcam.
Functionality
Once executed, the Trojan creates the following receivers:
com.android.main.SmsReceivercom.android.main.ActionReceiver
It also creates the following service:
com.android.main.MainService
The Trojan then opens a back door on the compromised device and may perform the following actions:
Send and monitor SMS messagesRead and write the user's browsing history and bookmarksInstall packagesWrite to external storageLast update 21 March 2014
