Basic Information
- Samples: 954
- Creation Date: 2012-05
- Detected Date: 2012-05
- Fraud: No
- Studied Sample: /FakeInst/variety3/40dcfb2ad99ef916e4c0b6113bc026d8.apk
- References:
https://blog.avast.com/topic/fakeinst
- Language: RU
Composition Strategy
- Standalone: ✔
- Repackaging:
- Library:
Activation Strategy
- Event: BOOT, MAIN, SMS
- By Host App:
- Scheduling:
Information Stealing
- Personal Information:
- Device Information:
Persistence
- Clean Evidence:
- Prevent Destroy:
Privilege Escalation
- Request Device Admin:
- Root Exploits:
C&C
- Internet Server: ✔
- SMS Server:
- Command Encoding: custom_protocol
Anti-analysis Techniques
- Renaming:
- String Encryption:
- Dynamic Loading:
- Native Payload:
- Evade Dynamic Analysis:
Monetization Methods
- Subscribe to Premium Service: static
- Banking Trojan:
- Ransom:
- Aggressive Advertisement: