According to a report from Kaspersky Lab’s, there have found the most sophisticated Android Trojan yet.
The new Trojan – Backdoor.AndroidOS.Obad.a. is reported to be multi-functional and is capable of: sending SMS to premium-rate numbers; downloading other malware programs, installing them on the infected device and/or sending them further via Bluetooth and remotely performing commands in the console.
“Malware writers typically try to make the codes in their creations as complicated as possible, to make life more difficult for anti-malware experts,” Roman Unuchek reports for Kaspersky Lab. “However, it is rare to see concealment as advanced as Odad.a’s in mobile malware. Moreover, this complete code obfuscation was not the only odd thing about the new Trojan.”
“The creators of Backdoor.AndroidOS.Obad.a found an error in the popular DEX2JAR software – this program is typically used by analysts to convert APK files into more convenient Java Archive (JAR) format. This vulnerability spotted by the cybercriminals disrupts the conversion of Dalvik bytecode into Java bytecode, which eventually complicates the statistical analysis of the Trojan,” Unuchek explains.