Author ：Iflowpower – Portable Power Station Supplier
As we all know, the mobile phone virus we encountered in the past, often destroying the internal system of the phone, such as the screen unlock is invalid, or jumps to the phishing website when accessing the webpage, but today we have to say, but it is a kind of mobile phone Battery expansion, leading to a terrorist virus for mobile phone shell. Recently, the Kaspersky Lab has found an Android mobile phone malware called "Trojan.androidos.
LoApi", users click on banner ads and download the lOapi virus lap after the fake anti-virus application or erotic application. After the malware is installed, it requires system administrator privileges to the user, if the notice is rejected, the notification will cycle on the screen until the user is unbearable, "OK" button. Getting system authority is just the first step, then LOAPI will expand its evil margin, because the modular design is used, so it can switch the function, download and install new components through the remote server command.
From the research and analysis of Kaspersky Lab, LOAPI has the following features: a large number of advertisements, Android phones that are infected with Loapi will pop up the sky-covered banner and video advertising. It also downloads and installs other applications, opens the page in Facebook, Instagram, and Vkontakte, and promoting the scores of these software rise. Paying subscription, LOAPI has a module to send SMS to the specified number to subscribe to some paid services, which are secret, sending and receiving SMS will be deleted immediately.
DDoS attack, Trojan will use the built-in proxy server, and publish the HTTP request by the infected equipment, hijacking the mobile phone to initiate DDoS attacks on Web resources. Encrypted currency excavation is also commonly known as mining. LOAPI can use smartphones to excavate Monero (Monolin), in the 2nd day of testing malware, the test used mobile phone due to excessive use of the battery due to the excavation and huge network connection, and support the phone housing.
Download a new module, in this virus's code, the Kaspersky Laboratory discovers a lot of not deployed features, which can be adjusted according to the developer's fraud strategy to achieve further use. Not only that, LOAPI also has a function of "downside", once the user tries to cancel its administrator privileges in the setup interface, LOAPI will turn off the window of the phone. LOAPI will also lie to the malware when the user is installed, and it is a malware, forcing the user to uninstall the user.
Regarding how to resist LOAPI, researchers in the Kaspersky Labs suggest that only go to the official store to download the software, and prohibit the installation of applications from unknown sources, not installing, nothing, and installing a mature and reliable anti-virus software and scheduled regularly equipment. .
Copyright © 2022 iFlowpower Technology Company Limited - All Rights Reserved.