Plankton Android Trojan Found in 10 Apps on Android Market

Ten more applications have been pulled from the Google’s official Android Market following a notification that they contained a new kind of Android malware. The malware was discovered by Xuxian Jiang, an assistant professor at the NC State University, and his team. As we have already witnessed before, the malicious code is “grafted” onto legitimate applications, and once the app is installed, it works as a background service whose goals is to gather information and transmit it to a remote server. The server takes the information in consideration and returns a URL from which the malware downloads a .jar file that, once loaded, exploits Dalvik class loading capability to stay hidden by evading static analysis.

3 Comments

  1. 2011-06-11 6:48 pm
  2. 2011-06-13 10:56 am
  3. 2011-06-15 2:12 pm