FOR CUSTOMERS

Close

Library
My library

+ Add to library

Search
Search

Contact us
24/7 Tech support | Rules regarding submitting

Send a message

A query form

Call us

+7 (495) 789-45-86

Forum

Your tickets

New ticket

Call us

+7 (495) 789-45-86

Profile

EN

RU CN DE EN ES FR IT JP KZ UZ PL BY
Close
Support services
Scanners
Dr.Web vxCube
Trial
VCI investigations
Virus library
Knowledge base

Technologies

Terminology

Training and education

Myths

News

Virus library

An analysis of the technologies used by cybercriminals allows us to draw conclusions about the virus industry’s possible vectors of development and more effectively confront future threats. You, too, can learn what actions various malicious programs take in infected systems and how to withstand them.

Android.Mobifun in virus library:

A family of Trojans for Android whose main function is to download other software.

The Android.Mobifun Trojans send the following information to the command and control server:

  • IMEI identifier;
  • IMSI identifier;
  • BSSID identifier of the current Wi-Fi access point;
  • Current operating system version;
  • Display parameters;
  • MCC (Mobile Country Code) identifier;
  • MNC (Mobile Network Code) identifier;
  • Mobile network operator;
  • GSM Cell ID (an identifier of the mobile operator’s base station to which the user’s phone is connected);
  • GSM Cell Location area code (a code for determining coordinates of the mobile operator’s base station);
  • RAM amount;
  • ROM amount;
  • SD card memory amount;
  • Presence of the malicious application in the /system folder.

Upon cybercriminals’ command, Trojans can execute the following actions:

  • Download an APK file and show a notification prompting a user to install the corresponding application.
  • Load a specified URL in the browser window.

Some versions of the Android.Mobifun Trojans can also send SMS messages.

Android.Mobifun in virus library:

Android.Mobifun.100
Android.Mobifun.101
Android.Mobifun.102
Android.Mobifun.103
Android.Mobifun.104
Android.Mobifun.105
Android.Mobifun.106
Android.Mobifun.107
Android.Mobifun.108
Android.Mobifun.110
Android.Mobifun.111
Android.Mobifun.112
Android.Mobifun.113
Android.Mobifun.114
Android.Mobifun.115
Android.Mobifun.116
Android.Mobifun.117
Android.Mobifun.118
Android.Mobifun.119
Android.Mobifun.120
Android.Mobifun.121
Android.Mobifun.122
Android.Mobifun.123
Android.Mobifun.124
Android.Mobifun.125
Android.Mobifun.126
Android.Mobifun.127
Android.Mobifun.128
Android.Mobifun.129
Android.Mobifun.130
Android.Mobifun.131
Android.Mobifun.132
Android.Mobifun.133
Android.Mobifun.134
Android.Mobifun.135
Android.Mobifun.136
Android.Mobifun.137
Android.Mobifun.138
Android.Mobifun.139
Android.Mobifun.140
Android.Mobifun.141
Android.Mobifun.142
Android.Mobifun.143
Android.Mobifun.144
Android.Mobifun.145
Android.Mobifun.146
Android.Mobifun.147
Android.Mobifun.148
Android.Mobifun.149
Android.Mobifun.150

1 2 3 4 5 6

Vulnerabilities for Android

According to statistics, every fifth program for Android contains a vulnerability (or, in other words, a "loophole") that lets cybercriminals successfully introduce Trojans onto mobile devices and manipulate them into doing whatever actions they need them to.

Dr.Web Security Auditor for Android diagnoses and analyses a mobile device’s security and offers solutions to address security problems and vulnerabilities.

Vulnerability descriptions
Download Dr.Web for Android

Dr.Web technologies

Preventive protection
Non-signature detection
Detection technologies powered by machine learning
Curing technologies

And more: Anti-spam | Dr.Web virus database | Global Updating System