Clicky

Tuesday, February 4, 2014

Android.FakeRegSMS.B (Steganography) - Feb 2012



Research: http://forensics.spreitzenbarth.de/2012/02/03/detailed-analysis-of-android-fakeregsms-b/


MD5:  41ca3efde1fb6228a3ea13db67bd0722
Size: 65207

Download (email me if you need the password) 


----------------




SHA256: 8a8a246eea40e49b1aaad23fd867b8a9faeb936fe020ba5ce43b4547331a63ea
File name: 8A8A246EEA40E49B1AAAD23FD867B8A9FAEB936FE020BA5CE43B4547331A63EA.log
Detection ratio: 29 / 46
Analysis date: 2013-03-06 11:50:58 UTC ( 11 months ago )

 Behavioural information
Antivirus Result Update
Comodo UnclassifiedMalware 20130306
Microsoft Trojan:AndroidOS/FakeInstSms.B 20130306
F-Secure Trojan:Android/Fakeinst.U 20130306
Antiy-AVL Trojan/win32.agent 20130306
Symantec Trojan.Gen.2 20130306
PCTools Trojan.Gen 20130306
NANO-Antivirus Trojan.FakeInst.otrdo 20130306
Ikarus Trojan.AndroidOS.FakeInstSms 20130306
Agnitum Trojan.AndroidOS.FakeInst.E 20130305
VBA32 Trojan-SMS.AndroidOS.FakeInst.a 20130305
K7AntiVirus Trojan 20130305
Fortinet Riskware/FakeInst!Android 20130306
Kaspersky HEUR:Trojan-SMS.AndroidOS.FakeInst.a 20130306
TrendMicro AndroidOS_SMSREG.A 20130306
TrendMicro-HouseCall AndroidOS_SMSREG.A 20130306
Commtouch AndroidOS/GenBl.41CA3EFD!Olympus 20130306
AVG Android_c.BRD 20130306
Avast Android:FakeInst-C [Trj] 20130306
ESET-NOD32 Android/TrojanSMS.Agent.AG 20130306
AntiVir Android/Agent.20462.9 20130306
Emsisoft Android.Trojan.FakeInst.S (B) 20130306
BitDefender Android.Trojan.FakeInst.S 20130306
GData Android.Trojan.FakeInst.S 20130306
MicroWorld-eScan Android.Trojan.FakeInst.S 20130306
Kingsoft Android.Troj.Undef.(kcloud) 20130304
DrWeb Android.SmsSend.243 20130306
ClamAV Android.SmsSend-1 20130306
CAT-QuickHeal Android.FakeInst.B 20130306
Sophos Andr/FakeIns-G 20130306

3 comments:

  1. Password scheme doesn't work

    ReplyDelete
  2. Another research article on the same http://www.fortiguard.com/encyclopedia/virus/#id=3762524

    ReplyDelete