Android.Packed.18484

Добавлен в вирусную базу Dr.Web: 2017-02-07

Описание добавлено: 2017-02-07

Техническая информация

Вредоносные функции:

Загружает на исполнение код следующих детектируемых угроз:

Android.Xiny.78.origin

Сетевая активность:

Подключается к:

s####.####.com
anf####.com
i####.####.com
2####.####.com
c####.####.com
fontst####.####.com
z####.####.com
a####.####.com
pag####.####.com

Запросы HTTP GET:

s####.####.com/core.php?web_id=####&show=####&t=####
fontst####.####.com/s/opensans/v13/k3k702ZOKiLJc3WVjuplzI3LH2FgLjViKkqswU-xtII.ttf
anf####.com/wp/wp-content/themes/twentytwelve/style.css?ver=####
pag####.####.com/pagead/js/r20170201/r20170110/show_ads_impl.js
fontst####.####.com/s/opensans/v13/u-WUoqrET9fUeobQW7jkRSZ2oysoEQEeKwjgmXLRnTc.ttf
anf####.com/wp/wp-includes/js/wp-emoji-release.min.js?ver=####
pag####.####.com/pagead/js/adsbygoogle.js
anf####.com/wp/wp-includes/js/wp-embed.min.js?ver=####
c####.####.com/9.gif?abc=####&rnd=####
s####.####.com/stat.php?id=####&show=####
2####.####.com/avatar/b48dc56e9a504b365633a214c450ed5d?s=####&d=####&r=####
2####.####.com/avatar/b6ea982d21cec0ac3012b60ab2a41ae4?s=####&d=####&r=####
z####.####.com/stat.htm?id=####&r=####&lg=####&ntime=####&cnzz_eid=####&showp=####&t=####&h=####&rnd=####
anf####.com/wp/wp-content/themes/twentytwelve/js/navigation.js?ver=####
2####.####.com/avatar/49e651c8f8af61bf908ed342cb8b037b?s=####&d=####&r=####
anf####.com/wp/2013/09/getandroidflash/
anf####.com/wp/wp-content/uploads/2013/07/down.jpg
i####.####.com/img/pic.gif
2####.####.com/avatar/f16ec8d659cb946ce05777f3e8504efe?s=####&d=####&r=####
anf####.com/wp/wp-includes/js/jquery/jquery-migrate.min.js?ver=####
anf####.com/wp/wp-includes/js/jquery/jquery.js?ver=####

Запросы HTTP POST:

a####.####.com/is/info.jsp
a####.####.com/is/init.jsp

Изменения в файловой системе:

Создает следующие файлы:

/sdcard/Android/data/cache/.spimg/blue
/data/data/####/cache/webviewCacheChromium/f_000007
/data/data/####/cache/webviewCacheChromium/f_00000a
/data/data/####/files/tgmb
/data/data/####/cache/webviewCacheChromium/f_00000c
/data/data/####/cache/webviewCacheChromium/f_00000b
/sdcard/Android/data/cache/.spimg/green
/sdcard/Android/data/cache/.spimg/ae
/data/data/####/cache/webviewCacheChromium/f_000009
/data/data/####/cache/webviewCacheChromium/f_000005
/sdcard/Android/data/cache/.spimg/ad
/data/data/####/cache/webviewCacheChromium/data_3
/data/data/####/cache/webviewCacheChromium/data_2
/data/data/####/cache/webviewCacheChromium/data_1
/data/data/####/cache/webviewCacheChromium/data_0
/data/data/####/cache/webviewCacheChromium/f_000001
/sdcard/Android/data/cache/.spimg/ag
/data/data/####/databases/webviewCookiesChromium.db-journal
/sdcard/Android/data/cache/.spimg/af
/data/data/####/files/wt2015mouse.jar
/data/data/####/shared_prefs/eepshare.xml.bak
/sdcard/Android/data/cache/.spimg/aa
/sdcard/Android/data/cache/.spimg/orange
/data/data/####/shared_prefs/fsnum.xml
/sdcard/Android/data/cache/.spimg/yellow
/data/data/####/cache/webviewCacheChromium/f_000004
/sdcard/Android/data/cache/.spimg/ac
/data/data/####/cache/webviewCacheChromium/f_000003
/data/data/####/databases/webview.db-journal
/sdcard/Android/data/cache/.spimg/ab
/sdcard/Android/data/cache/.spimg/q
/sdcard/Android/data/cache/.spimg/p
/sdcard/Android/data/cache/.spimg/s
/sdcard/Android/data/cache/.spimg/r
/sdcard/Android/data/cache/.spimg/u
/sdcard/Android/data/cache/.spimg/t
/sdcard/Android/data/cache/.spimg/w
/sdcard/Android/data/cache/.spimg/v
/sdcard/Android/data/cache/.spimg/x
/sdcard/Android/data/cache/.spimg/z
/sdcard/Android/data/.cache/run.pp
/data/data/####/cache/webviewCacheChromium/f_000008
/sdcard/Android/data/cache/.spimg/c
/sdcard/Android/data/cache/.spimg/b
/sdcard/Android/data/cache/.spimg/e
/sdcard/Android/data/cache/.spimg/d
/sdcard/Android/data/cache/.spimg/g
/sdcard/Android/data/cache/.spimg/f
/sdcard/Android/data/cache/.spimg/i
/sdcard/Android/data/cache/.spimg/h
/sdcard/Android/data/cache/.spimg/k
/sdcard/Android/data/cache/.spimg/j
/sdcard/Android/data/cache/.spimg/m
/sdcard/Android/data/cache/.spimg/l
/sdcard/Android/data/cache/.spimg/o
/sdcard/Android/data/cache/.spimg/n
/sdcard/Android/data/cache/.spimg/a
/sdcard/Android/data/.cache/####.log
/data/data/####/cache/webviewCacheChromium/f_000006
/data/data/####/shared_prefs/eepshare.xml
/data/data/####/cache/webviewCacheChromium/f_000002
/data/data/####/cache/webviewCacheChromium/index

Другие:

Может автоматически отправлять СМС-сообщения.

Технологии

Термины

Обучение и просвещение

Мифы

Техническая информация

Рекомендации по лечению

Демо бесплатно на 14 дней