jetlib.sec » Full Disclosure » New Android Malware Botnet Reversed/Uncovered

Feeds

133098 items (0 unread) in 27 feeds

• 1337day (was: Inj3ct0r, 1337db)
• OSVDB Vulnerabilities
• Exploit-DB
• SecurityFocus Vulnerabilities
• Bugtraq
• Full Disclosure
• XSSed
• Packet Storm Security Headlines
• Packet Storm Security Advisories
• Packet Storm Security Exploits
• Packet Storm Security Recent Files
• Packet Storm Security Tools
• Packet Storm Security Misc. Files
• Sophos security news
• Sophos product advisories
• Penetration Testing
• SecuriTeam
• BackTrack Linux Forums
• Threatpost
• SecDocs
• carnal0wnage.attackresearch.com
• Carnal0wnage
• Kernel Fun
• Darknet
• The Exploitant
• Hack a Day
• Wirevolution

Full Disclosure

• February 10, 2012
• 

  New Android Malware Botnet Reversed/Uncovered

  Posted: February 10th, 2012, 10:56am PST

  Tags:   

  Posted by Adam Behnke on Feb 10

  Hello, one of InfoSec Institute's security researchers reverse engineered a
  new botnet that is active for the Android platform. RootSmart has some
  unique features that make it newsworthy:
  
  . Takes advantage of Gingerbreak exploit to take control of Android device
  . The main malware payload is a rootkit that hides itself inside of legit
  app
  . The rootkit hooks itself into the legit app as a boot service
  . The rootkit installs its own shell...