Android.Anzhu: a new backdoor for mobile devices based on Android

The company "Doctor Web" - a Russian developer of IT security - informs about a new backdoor for the mobile operating system Android. Android.Anzhu can perform a variety of directives received from the remote command center intruders installed without your knowledge, and other applications to change the browser bookmarks. According to experts, "Dr. Web", Android.Anzhu applies to Chinese websites that provide free software for OS Android.

Trojan-backdoor built into a legitimate program Screen Off And Lock, designed to lock the screen on and off the mobile device in one touch without using an animated slider and the power button. After beginning the installation of the system is installed the program itself Screen Off And Lock and creates an additional icon to run it in configuration mode - Configure Screen Off And Lock. If this application is downloaded from the official site of Android Market, and that's all over, but if a user downloaded it from a Chinese site, in addition to the above components on the device runs a backdoor, which goes into standby mode by entering malicious commands. In addition to the various directives Android.Anzhu know how to download and install without the user knowing other programs specified in the malicious backdoor transmitted instructions. After loading the specified application, Android.Anzhu can change its system privileges and run. In addition, the Trojan has a feature change your browser bookmarks. Another ability Android.Anzhu - tracking log Android and, in particular, the events associated with the launch and opening the windows of other applications. Finally, the Trojan is able to collect information on your mobile device and send her attackers. The greatest danger is the new backdoor for owners rutovannyh vehicles. The signature of the threat added to Dr.Web virus database for Android Anti-spam and Dr.Web for Android Light.