Detect date
06/28/2016
Class
Trojan-Banker
Platform
AndroidOS

Parent class: TrojWare

Trojans are malicious programs that perform actions which are not authorized by the user: they delete, block, modify or copy data, and they disrupt the performance of computers or computer networks. Unlike viruses and worms, the threats that fall into this category are unable to make copies of themselves or self-replicate. Trojans are classified according to the type of action they perform on an infected computer.

Class: Trojan-Banker

Trojan-Banker programs are designed to steal user account data relating to online banking systems, e-payment systems and plastic card systems. The data is then transmitted to the malicious user controlling the Trojan. Email, FTP, the web (including data in a request), or other methods may be used to transit the stolen data.

Read more

Platform: AndroidOS

Android is an open-source operating system developed by Google for mobile devices, such as tablets, smartphones, and watches. Based on a Linux kernel and the Dalvik virtual machine (older versions) / Android Runtime environment (newer versions).

Description

Malware of this family monitors the applications that are running on a device. When a banking application is detected, for example, it is covered by a fraudulent window that displays HTML code received from a command server. In most cases, the window asks the user to enter bank card details. In addition, the Trojan has the following additional capabilities:
  • Intercept and spoof SMS messages.
  • Obtain GPS coordinates.
  • Intercept calls.

Top 10 countries with most attacked users (% of total attacks)

1
Germany
28.36%
2
Australia
17.23%
3
Russian Federation
14.81%
4
Turkey
8.11%
5
Poland
5.72%
6
USA
4.54%
7
Austria
2.88%
8
France
2.84%
9
United Kingdom
2.18%
10
Spain
1.56%
* Percentage among all unique Kaspersky users worldwide attacked by this malware

Read more

Find out the statistics of the vulnerabilities spreading in your region on statistics.securelist.com

Found an inaccuracy in the description of this vulnerability? Let us know!
Kaspersky Next
Let’s go Next: redefine your business’s cybersecurity
Learn more
New Kaspersky!
Your digital life deserves complete protection!
Learn more
Confirm changes?
Your message has been sent successfully.