Android /特洛伊。代理
简短的个人介绍
Android /特洛伊。代理is a malicious app that runs in the background of a mobile device unbeknownst to the user. It silently waits for commands from a Command & Control (C&C) sever. These commands could be anything from stealing and sending personal information to remote servers, to acting as DDoS bots against targeted victims. On the Android OS, it often hides it presence by not creating an icon to itself, and listing itself a generic name in the mobile devices app list. Often, it impersonates a system app on the mobile device making it especially difficult to identify.
症状
在某些情况下,用户可能会注意到运行在后台的代理的性能下降。
感染类型及来源
在Android操作系统上,一种Android/木马。代理infected APK typically is given a filename of a legitimate app, but has a completely different package name, digital certificate, and code then the app it claims. It is then distributed through third party app stores.
之后
受感染的设备将运行Android/木马。代理and the downloaded malicious app(s) until both/all are uninstalled.
保护
必威平台APPMalwarebytes for Android保护Android/木马。agent。
修复
这些应用程序可以使用移动设备的卸载功能卸载,棘手的部分是识别违规行为和应用程序。这对Android/Trojan.Agent尤其如此。这就是Malwarebyte必威平台APPs可以帮助Android识别并删除这些应用程序的地方。
