Sihai network

Kaspersky finds that the most terrible Trojan horse on Android can't be deleted after it spreads aut

Kaspersky, an anti-virus software security company, recently launched the latest Android Trojan, code name Backdoor.AndroidOS.Obad . a, and said it uses the 'most complex' code obfuscation technology, which can download and install malware on the infected device by itself, and can also spread through Bluetooth, send malware to other devices and execute commands remotely. The most terrible thing is that it's hard to detect and can't be removed.

Android malware has been talked about a lot, but there are only a few devices that can be threatened, and people don't pay special attention to it. Because the previous malicious code is usually not well programmed, easy to be detected, easy to remove.

But the Trojan will take advantage of a manifest file that every android app has. This file usually shows its structure and components. The Android Trojan Obad. A uses this vulnerability to hide.

After the Obad. A intrudes into the system, its own encrypted code makes it more difficult to distinguish. The part hidden in the component will decide whether to add code according to the needs.

After arriving at an Android program, Trojans will try their best to obtain administrator's permission. Usually, after some excessive applications obtain permission, they may only lock the screen, read SMS, wipe data remotely, etc. But the purpose of this trojan is more evil, so you can't uninstall it. In addition, you can't see the existence of this application in application management. It has no interface and only a background running service.

After having no way to get it, this trojan starts to execute everything that trojan virus can do, obtain personal information, install other malicious applications, send spam to your contacts, and spread it through SMS messages, with the ultimate goal of making money just like ordinary Trojans.

In addition, Obad. A can also spread automatically through Bluetooth, trying to copy the virus to nearby mobile phones, send malware to other devices and execute commands remotely. Foreign media said that the Trojan is a new Trojan unknown before, which has a huge threat to the security of Google system, because the virus will automatically update, and become more severe in users' mobile phones. At present, the vulnerability has been reported to Google, the developers hope that Google can repair the vulnerability as soon as possible!

The biggest hidden danger behind this event is that it may make Android platform become the most complex and stubborn malware popular place for Internet villains to create, and directly pursue the huge trauma that malicious viruses left to windows.