Home / malware Android.Milipnot
First posted on 05 July 2014.
Source: SymantecAliases :
There are no other names known for Android.Milipnot.
Explanation :
Android package file
The Trojan may arrive as a package with the following characteristics:
Package name: com.gmail.xpack
APKs: Raiffeisen.apk, ZKB.apk
Version: 1.0
Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:
Start once the device has finished bootingSend SMS messagesRead SMS messages on the deviceMonitor incoming SMS messagesOpen network connectionsCheck the phone's current stateAccess location information, such as Cell-ID or WiFiAccess information about networks
Installation
Once installed, the application will display an icon that poses as the logo of a legitimate banking app.
Functionality
When the Trojan is executed, it poses as a legitimate banking app.
The Trojan may then steal banking two-factor authentication details that the device receives through SMS messages.Last update 05 July 2014
