[Q] Warning: Possible Chinese Trojan from coolapk.com
I wanted to warn you of this website: coolapk.com. Certain apk files contain "additional" parts. In this case it was a part of VLC (Video Lan Client). After downloading an apk file and installing, all seems to be normal and the desired software is running. Under applications there are only the programs you know about. But after close look, you will find a hidden additional application under Settings/Apps/Show All at the bottom behind letter Z if showing within alphabetical order containing only chinese signs. It is already running, you can not deinstall it only force stop and deactivate is possible. The file size is shown as 4KB. After uninstalling the original app this still is keeped in your system. During the installation there was absolutely no sign of additional software attached. This device is not rooted and has OEM ROM. The machine I was using is Motorola (Enterprise Solutions) TC55 PN TC55BH-JC11ES, Android 4.1.2 Build 131013-SI-1800EN-01.45-15443J-4.1.2-user. I downloaded the apk files 24.02.2014 and the chinese software contains a following timestamp in the properties: 20131013.224458. This app has following rights granted: personal information (read all words attached to the dictionary, read contacts) and network communication (full network access). Attached is the screenshot of above mentioned hidden software (only app-info), perhaps a friendly user can help translate and tell what is it, because it's behaviour as far is not really trustworthy for me.
Contact me for additional questions (enterprise class units only).
regards + stay clean