The Trojan, dubbed Android.Gmobi.1, is a specialised software package (SDK-platform), which extends the functionality of Android application and is used as handset manufacturers and software developers. In particular, this module is designed for remote updates of the operating system, analytical data collection, display various notifications (including advertising) and mobile payments. However, despite the seeming harmlessness, Android.Gmobi.1 in many respects behaves like a typical Trojan, so the containing programs are detected by antivirus products used.Web for Android as malicious. At the moment the specialists of "Doctor Web" found this SDK on preinstalled system ON nearly 40 popular mobile devices and applications TrendMicro Dr.Safety, TrendMicro Dr.Booster and Asus WebStorage, which is available for download on Google Play. All the affected companies were notified of the problem and are addressing it. So, the latest official version of Dr programs TrendMicro.Safety and TrendMicro Dr.Booster do not contain this Trojan.
Many modern Trojans are designed to display Intrusive advertising, as well as installation of various software on mobile devices. With their help the virus makers get good profit, it is not surprising that the number of such malicious programs is increasing. One of those Trojans, which investigated in March the specialists of "Doctor Web" was found in about 40 firmware Android-devices. In addition, it was discovered in multiple applications from well-known companies.
Posted on March 19, 2016 at 03:00