Hackers News Bulletin| Latest Cyber Security News Portal

Hackers News Bulletin | Latest Cyber Security News Portal
Follow us socially to get News Fast:

New Android Malware is Targeting Human Rights Activists

Posted By: Praveen Kashyap | Posted in: Android Malwares News Spam Attacks | Time Posted: March 28, 2013 at 10:54 am

Before reading any posts on HNB, we would like to tell you that every post here is for your online security, safety or for awareness, and we do not teach hacking through our articles, if you find something which is being used to damage your online property or something like that, REPORT HERE.

Some days ago , Email account of a high-profile Tibetan activist was hacked and that was used to send targeted attacks to human rights advocates and other activists, the main part of this that the mail which come to us has an attachment (.APK) File it is basically used in Android.

That was 24th March when the high-profile Tibetan activist was hacked and was used to send phishing email to their contact list, below is the Image how that Email looks like:

You have seen the above example where apk file Malware presents and now see ,How the Windows users are being hitted up see the Image below:

Going back to the Android Package (APK) file was attached to the e-mail, this is pushing an Android application named “WUC’s Conference.apk”.

This malicious APK is 334326 bytes file, MD5: 0b8806b38b52bebfe39ff585639e2ea2 and is detected by Kaspersky Lab products as “Backdoor.AndroidOS.Chuli.a”.

How it looks when it is being Installed on Android Device:

When you will open that then you will see upcoming events like this:

After the installation, an application named “Conference” appears on the desktop:

What can this Android Malware can steal:

  • Contacts (stored both on the phone and the SIM card).
  • Call logs.
  • SMS messages.
  • Geo-location.
  • Phone data (phone number, OS version, phone model, SDK version).
Every day, there are hundreds if not thousands of targeted attacks against Tibetan and Uyghur supporters. The vast majority of these target Windows machines through Word documents exploiting known vulnerabilities such as CVE-2012-0158, CVE-2010-3333 and CVE-2009-3129.

About Praveen Kashyap

Praveen KashyapI am blogging for news related to hacking, hackers, security, tips, tricks and about many more... from 2011. Also making you aware about latest online threats, hope I am doing my best, meet me on various social platforms.
  • Follow Me:
  • google-plus twitter like button facebook like button

Rate this article:
1.00/ 5 (2 votes)
Tagged with: