A Trojan with Hidden Malicious Code Steals User’s Messenger App Information

Trustlook Labs has discovered that a Trojan encrypts a configuration file within a popular messenger app, and uses malicious modules to evade detection. The malware has the following characteristics: MD5: ade12f79935edead1cab00b45f9ca996 SHA256: 1413330f18c4237bfdc523734fe5bf681698d839327044d5864c9395f2be7fbe Size: 1774802 bytes App name: Cloud Module (in Chinese) Package name: com.android.boxa The malware detects the emulator or, if attached by a … Continue reading A Trojan with Hidden Malicious Code Steals User’s Messenger App Information

Link: https://blog.trustlook.com/2018/04/02/a-trojan-with-hidden-malicious-code-steals-users-messenger-app-information/