Clicky

Sunday, November 24, 2013

Godwon - Android Infostealer

Godwon C11FC7207BFBDB91E35B6C285FE0934F
Godwon 79309179DB63D2B505398ABCB4DD1AE0
Godwon 1238F2387193330BC79E7A03E92C2038
Godwon 2C373AA90942FEDC21BB0B2D35E8E340


Research: http://www.symantec.com/security_response/writeup.jsp?docid=2013-091017-1833-99





Download. Email me if you need the password







https://www.virustotal.com/en/file/f8e42ebc8fca45a794688e4f1e5370744c0a83e538c9148f4e354a03811833bb/analysis/
SHA256: f8e42ebc8fca45a794688e4f1e5370744c0a83e538c9148f4e354a03811833bb
File name: f8e42ebc8fca45a794688e4f1e5370744c0a83e538c9148f4e354a03811833bb
Antivirus Result Update
Comodo UnclassifiedMalware 20131109
F-Secure Trojan:Android/SmsSpy.AI 20131109
Baidu-International Trojan.AndroidOS.Godwon.Akvi 20131109
VIPRE Trojan.AndroidOS.Generic.A 20131109
NANO-Antivirus Trojan.Agent.cgqskc 20131109
TrendMicro-HouseCall TROJ_GEN.F47V0923 20131109
Ikarus Spy.AndroidOS 20131109
Kaspersky HEUR:Trojan-Spy.AndroidOS.Godwon.a 20131109
McAfee Artemis!79309179DB63 20131109
McAfee-GW-Edition Artemis!79309179DB63 20131109
Commtouch AndroidOS/GenBl.79309179!Olympus 20131109
Avast Android:FkTaoBao-A [Trj] 20131109
Fortinet Android/SmsSpy.V 20131109
AntiVir Android/Agent.T.12 20131109
Emsisoft Android.Trojan.SmsSpy.AG (B) 20131109
MicroWorld-eScan Android.Trojan.SmsSpy.AG 20131109
BitDefender Android.Trojan.SmsSpy.AG 20131109
GData Android.Trojan.SmsSpy.AG 20131109
Kingsoft Android.Troj.at_sexclient.a.(kcloud) 20130829
CAT-QuickHeal Android.Godwon.A 20131109
Sophos Andr/SmsSpy-V 20131109
ESET-NOD32 a variant of Android/Spy.Agent.T 20131109

https://www.virustotal.com/en/file/cd3356755244963ee3560b1d40ac43d7a13f153161cd54b9b7a0bdf15492580e/analysis/
SHA256: cd3356755244963ee3560b1d40ac43d7a13f153161cd54b9b7a0bdf15492580e
File name: vipp.apk
Detection ratio: 24 / 47
Analysis date: 2013-11-13 13:32:06 UTC ( 1 week, 4 days ago )
Antivirus Result Update
Comodo UnclassifiedMalware 20131113
F-Secure Trojan:Android/Smforw.D 20131113
VIPRE Trojan.AndroidOS.Generic.A 20131113
Baidu-International Trojan.Android.Spy.Agent.I 20131113
TrendMicro-HouseCall TROJ_GEN.F47V0828 20131113
Ikarus Spy.AndroidOS 20131113
Kaspersky HEUR:Trojan-Spy.AndroidOS.SmForw.r 20131113
McAfee Artemis!2C373AA90942 20131113
McAfee-GW-Edition Artemis!2C373AA90942 20131113
TotalDefense AndroidOS/Tnega.UYURTLD 20131112
F-Prot AndroidOS/Stealer.C 20131113
Commtouch AndroidOS/GenBl.2C373AA9!Olympus 20131113
AVG Android_dc.AIVH 20131113
Avast Android:SMSreg-DI [PUP] 20131113
Fortinet Android/SmsSpy.V 20131113
AntiVir Android/Agent.I.14 20131113
Emsisoft Android.Trojan.SmsSpy.AD (B) 20131113
MicroWorld-eScan Android.Trojan.SmsSpy.AD 20131113
BitDefender Android.Trojan.SmsSpy.AD 20131113
GData Android.Trojan.SmsSpy.AD 20131113
Kingsoft Android.Troj.at_Faketaobao.b.(kcloud) 20130829
CAT-QuickHeal Android.Godwon.A 20131113
Sophos Andr/SmsSpy-V 20131113
ESET-NOD32 a variant of Android/Spy.Agent.I 20131113

No comments:

Post a Comment