Home / malware Android.Becuro
First posted on 15 May 2015.
Source: SymantecAliases :
There are no other names known for Android.Becuro.
Explanation :
The Trojan comes pre-installed on some Android devices.
Android package file
The Trojan may arrive as a package with the following characteristics:
Package name: com.cube.activity
Version: 1.0
Name: android.cube
Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:
End background processesRead and write to external storageStart once the device has finished bootingChange the phone state, such as powering it on and offAccess location information, such as Cell-ID or Wi-FiOpen network connectionsAccess information about networksAccess information about the Wi-Fi stateChange Wi-Fi connectivity state Change network connectivity stateMonitor incoming SMS messagesDisable the keyguardPrevent processor from sleeping or screen from dimmingRead or write to the system settingsMake the phone vibrateWrite the APN settingsInstall packages
Installation
Once installed, the application does not display an icon.
Functionality
The Trojan may perform the following actions on the compromised device:
Download and install potentially malicious applicationsDisplay advertisementsBlock SMS messages
The Trojan may connect to the following remote location:
[http://]view.ubiqs.mobiLast update 15 May 2015
