The page may not load correctly.
An analysis of the technologies used by cybercriminals allows us to draw conclusions about the virus industry’s possible vectors of development and more effectively confront future threats. You, too, can learn what actions various malicious programs take in infected systems and how to withstand them.
Family of malicious programs which operate on Android mobile devices. The Trojans inject their code into the Zygote system process that participates in launching of applications. As a result, the processes of just started applications get infected.
The main malicious function of these Trojans is to covertly send SMS messages. They can also intercept sent SMS messages and change their text and recipient number. The architecture of malicious applications provides the possibility to download additional components with other malicious functions from the command and control server.
As a self-protection, the Android.Triada Trojans attempt to shut down some anti-virus applications popular in China. Besides, if original files of the malicious programs are deleted from a device. they are restored from RAM.
According to statistics, every fifth program for Android contains a vulnerability (or, in other words, a "loophole") that lets cybercriminals successfully introduce Trojans onto mobile devices and manipulate them into doing whatever actions they need them to.
Dr.Web Security Auditor for Android diagnoses and analyses a mobile device’s security and offers solutions to address security problems and vulnerabilities.
