Monday, October 13, 2014

Multifunctional Android-spy disguised as a “tic-tac-toe» – 3DNews

«Kaspersky Lab” has detected a new malicious program aimed at mobile devices running Android: Trojan was called Gomal.

The malware disguised as a harmless game of “tic-tac-toe.” However, for the proper functionality meets only a small part of the code (less than 30%), while the bulk of it is intended to implement spyware capabilities. Gomal able to record sound, handle calls and steal the contents of the SMS. In addition, the Trojan collects information about the device and sends all the data to the server intruders.

 Green circled the game code, and red - the malicious part of the program

Green circled the game code, and red – the malicious part of the program

At the same time, in the code of the malware detected and atypical for such malware functions. So, the Trojan has a built-in access to various services platform Linux, which is based OS Android. In particular, the malware is able to access the memory block its interesting process that jeopardizes many communication applications. For example, a Trojan steals regular mail app Good for Enterprise, which is positioned as a secure e-mail client for corporate use. As a result, in the hands of cyber criminals may be confidential business information.

In addition, Gomal steals data from logcat – built-in Android service login used for debugging applications.

For more information on a malicious program can be found here.


If you find an error – select it with the mouse and press CTRL + ENTER.


No comments:

Post a Comment