Home / malware Android.Malminer
First posted on 29 March 2014.
Source: SymantecAliases :
There are no other names known for Android.Malminer.
Explanation :
Android package file
The Trojan may arrive as a package with the following characteristics:
Package names: com.socialtokenmobile.prized.androidcom.originalsongs321Name: Prized
Permissions
When the Trojan is being installed, it requests permissions to perform the following actions: Access location information, such as Cell-ID or WiFiAccess location information, such as GPS informationAccess information about networksAccess information about the WiFi stateConnect to paired bluetooth devices Initiate a phone call without using the Phone UI or requiring confirmation from the userAccess list of accounts in the Accounts ServiceAccess information about currently or recently running tasksOpen network connectionsRead user's calendar dataRead user's contacts dataCheck the phone's current stateStart once the device has finished bootingSend SMS messagesMake the phone vibratePrevent processor from sleeping or screen from dimmingCreate new calendar informationCreate new contact dataWrite to external storage devices
Installation
Once installed, the application will display a blue icon with a white present on it.
Functionality
The Trojan poses as an app that allows users to play games and win reward points, which can be used to claim prizes.
The Trojan may then mine cryptocurrencies on the compromised device without the user's knowledge.Last update 29 March 2014
