Attend XDA's Second Annual Developer Conference, XDA:DevCon 2014!
5,808,000 Members 49,097 Now Online
XDA Developers Android and Mobile Development Forum

[SECURITY ALERT!] DroidDream Malware Found in Official Android Market

Tip us?
 
AllGamer
Old
(Last edited by AllGamer; 2nd March 2011 at 04:11 PM.)
#1  
AllGamer's Avatar
Retired Forum Moderator - OP
Thanks Meter 1,578
Posts: 11,521
Join Date: May 2008
Location: buried under loads of work IRL

 
DONATE TO ME
Exclamation [SECURITY ALERT!] DroidDream Malware Found in Official Android Market

Google pulls 56 malicious apps from Android Marketplace

original source: http://blog.mylookout.com/2011/03/se...et-droiddream/

List of malicious Android App that steals your information and download additional craps to your phone

Full list Developed by “Myournet”:
  • Falling Down
  • Super Guitar Solo
  • Super History Eraser
  • Photo Editor
  • Super Ringtone Maker
  • Super Sex Positions
  • Hot Sexy Videos
  • Chess
  • 下坠滚球_Falldown
  • Hilton Sex Sound
  • Screaming Sexy Japanese Girls
  • Falling Ball Dodge
  • Scientific Calculator
  • Dice Roller
  • 躲避弹球
  • Advanced Currency Converter
  • App Uninstaller
  • 几何战机_PewPew
  • Funny Paint
  • Spider Man
  • 蜘蛛侠

Full list Developed by “Kingmall2010″:
  • Bowling Time
  • Advanced Barcode Scanner
  • Supre Bluetooth Transfer
  • Task Killer Pro
  • Music Box
  • Sexy Girls: Japanese
  • Sexy Legs
  • Advanced File Manager
  • Magic Strobe Light
  • 致命绝色美腿
  • 墨水坦克Panzer Panic
  • 裸奔先生Mr. Runner
  • 软件强力卸载
  • Advanced App to SD
  • Super Stopwatch & Timer
  • Advanced Compass Leveler
  • Best password safe
  • 掷骰子
  • 多彩绘画

Full list Developed by “we20090202″:
  • Finger Race
  • Piano
  • Bubble Shoot
  • Advanced Sound Manager
  • Magic Hypnotic Spiral
  • Funny Face
  • Color Blindness Test
  • Tie a Tie
  • Quick Notes
  • Basketball Shot Now
  • Quick Delete Contacts
  • Omok Five in a Row
  • Super Sexy Ringtones
  • 大家来找茬
  • 桌上曲棍球
  • 投篮高手

Personal warning I'll also include AppsPlanet into those list if I were you.

Donation is appreciated but not required, a cup of Coffee would suffice

Samsung i9000m: on CM10
Samsung Nexus S: on JB 4.2.2
Samsung Galaxy S II SGH-T989: on CM10
Samsung Galaxy NOTE SGH-i717r: on CM10
Samsung Galaxy NOTE 3 SM-N900W8: stock 4.3
The Following 15 Users Say Thank You to AllGamer For This Useful Post: [ Click to Expand ]
 
Rofa1
Old
#2  
Member
Thanks Meter 0
Posts: 53
Join Date: Oct 2010
Location: Tampere
Any views as to whether installing Norton, MacAfee or similar would have picked these up?
 
yiannisthegreek
Old
#3  
yiannisthegreek's Avatar
Senior Member
Thanks Meter 198
Posts: 1,875
Join Date: Jul 2009
Location: Edmonton
Hey Allgamer,

Thanks for the great post / update!!!

Just wondering how much you are selling your Galaxy S for? Please PM me and let me know.

Thanks,

yiannisthegreek


 


Current Devices:

Primary Device: Samsung Galaxy Note II (N7100) - 16G

Secondary Device: None at this time

Tablet: None at this time

Prior Devices:

Android - SGS, Nexus S, Infuse 4G, SGSII, Galaxy Nexus (x2), Galaxy Note, SGSIII

WM / WP7 - Omnia (still own), HD7, Lumia 900

Tablets - Xoom, Galaxy Tab 10.1
Tehpriest Old
(Last edited by AllGamer; 2nd March 2011 at 07:34 PM.)
#4  
Guest
Thanks Meter 0
Posts: n/a
In case you have installed them.

Quote:
Google spikes 21 malicious apps with big download counts from the Market
Google just removed some 21 apps from the Market in the last day from a publisher going by Myournet for doing all sorts of naughty things to your device. Offenses include attempting to root your phone, uploading phone information (including IMEI) to who-knows-where, and -- most egregiously -- adding a backdoor that allows additional code to be pulled down and executed.

List of his apps (may not be all)
http://www.androidzoom.com/android_d...rnet_thqw.html

Quote:
Originally Posted by Auzy View Post
And Mashable

http://mashable.com/2011/03/01/android-malware-apps/

You should ALWAYS read the forum before posting
 
AllGamer
Old
(Last edited by AllGamer; 2nd March 2011 at 07:07 PM.)
#5  
AllGamer's Avatar
Retired Forum Moderator - OP
Thanks Meter 1,578
Posts: 11,521
Join Date: May 2008
Location: buried under loads of work IRL

 
DONATE TO ME
Quote:
Originally Posted by Rofa1 View Post
Any views as to whether installing Norton, MacAfee or similar would have picked these up?
Any of the well known Antivirus app for android should have picked it up.

I used to think we'll never need an AntiVirus app for Android... well think again.

after reading the article i downloaded all of them to run a full scan and the results are good

I scanned my phone and it's all clean


Donation is appreciated but not required, a cup of Coffee would suffice

Samsung i9000m: on CM10
Samsung Nexus S: on JB 4.2.2
Samsung Galaxy S II SGH-T989: on CM10
Samsung Galaxy NOTE SGH-i717r: on CM10
Samsung Galaxy NOTE 3 SM-N900W8: stock 4.3
 
AvalonGamer
Old
#6  
Junior Member
Thanks Meter 1
Posts: 1
Join Date: Oct 2010
Location: Brussels
Should one of these apps had been installed already (Photo Editor), is there something else I can do ... other than flashing ?

Thx
The Following User Says Thank You to AvalonGamer For This Useful Post: [ Click to Expand ]
 
AllGamer
Old
#7  
AllGamer's Avatar
Retired Forum Moderator - OP
Thanks Meter 1,578
Posts: 11,521
Join Date: May 2008
Location: buried under loads of work IRL

 
DONATE TO ME
Quote:
Originally Posted by AvalonGamer View Post
Should one of these apps had been installed already (Photo Editor), is there something else I can do ... other than flashing ?

Thx
you can simply un-install it, it doesn't really do anything to your phone until you run the app

and even if you did, uninstalling it will remove the problem

Flashing the phone is a bit over the top it's enough to do a system wipe if you want to be 100% sure, and then restore all your apps from backup, excluding the fake ones

Donation is appreciated but not required, a cup of Coffee would suffice

Samsung i9000m: on CM10
Samsung Nexus S: on JB 4.2.2
Samsung Galaxy S II SGH-T989: on CM10
Samsung Galaxy NOTE SGH-i717r: on CM10
Samsung Galaxy NOTE 3 SM-N900W8: stock 4.3
The Following User Says Thank You to AllGamer For This Useful Post: [ Click to Expand ]
 
kunjar
Old
#8  
Senior Member
Thanks Meter 17
Posts: 139
Join Date: Nov 2010
Waiting for ESET to debut on Android platform...
 
hansonator
Old
#9  
Senior Member
Thanks Meter 28
Posts: 272
Join Date: Sep 2010
Location: Calgary
Quote:
Originally Posted by kunjar View Post
Waiting for ESET to debut on Android platform...
+1

This reminded me to reinstall lookout after fresh flash.
 
MightyDrakeC
Old
#10  
Member
Thanks Meter 1
Posts: 34
Join Date: Jan 2011
Quote:
Originally Posted by AllGamer View Post
you can simply un-install it, it doesn't really do anything to your phone until you run the app

and even if you did, uninstalling it will remove the problem
This is actually an incomplete answer.

As noted on Android Police, (I'm new so I can't link there) these apps open a backdoor, which can download additional apps that can do *anything*. The original app doesn't do much on its own. But, removing the infected app will leave behind the additional malware introduced through the backdoor.

The Following User Says Thank You to MightyDrakeC For This Useful Post: [ Click to Expand ]
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes