Virus library

An analysis of the technologies used by cybercriminals allows us to draw conclusions about the virus industry’s possible vectors of development and more effectively confront future threats. You, too, can learn what actions various malicious programs take in infected systems and how to withstand them.

Android.Mobifun in virus library:

A family of Trojans for Android whose main function is to download other software.

The Android.Mobifun Trojans send the following information to the command and control server:

IMEI identifier;
IMSI identifier;
BSSID identifier of the current Wi-Fi access point;
Current operating system version;
Display parameters;
MCC (Mobile Country Code) identifier;
MNC (Mobile Network Code) identifier;
Mobile network operator;
GSM Cell ID (an identifier of the mobile operator’s base station to which the user’s phone is connected);
GSM Cell Location area code (a code for determining coordinates of the mobile operator’s base station);
RAM amount;
ROM amount;
SD card memory amount;
Presence of the malicious application in the /system folder.

Upon cybercriminals’ command, Trojans can execute the following actions:

Download an APK file and show a notification prompting a user to install the corresponding application.
Load a specified URL in the browser window.

Some versions of the Android.Mobifun Trojans can also send SMS messages.

Android.Mobifun in virus library:

Android.Mobifun.205
Android.Mobifun.206
Android.Mobifun.207
Android.Mobifun.208
Android.Mobifun.209
Android.Mobifun.210
Android.Mobifun.219
Android.Mobifun.221
Android.Mobifun.222
Android.Mobifun.223
Android.Mobifun.224
Android.Mobifun.226
Android.Mobifun.227
Android.Mobifun.228
Android.Mobifun.229
Android.Mobifun.23
Android.Mobifun.230
Android.Mobifun.231
Android.Mobifun.232
Android.Mobifun.233
Android.Mobifun.234
Android.Mobifun.235
Android.Mobifun.236
Android.Mobifun.237
Android.Mobifun.238
Android.Mobifun.239
Android.Mobifun.24
Android.Mobifun.240
Android.Mobifun.241
Android.Mobifun.242
Android.Mobifun.243
Android.Mobifun.244
Android.Mobifun.245
Android.Mobifun.246
Android.Mobifun.247
Android.Mobifun.248
Android.Mobifun.249
Android.Mobifun.250
Android.Mobifun.251
Android.Mobifun.252
Android.Mobifun.253
Android.Mobifun.254
Android.Mobifun.256
Android.Mobifun.257
Android.Mobifun.258
Android.Mobifun.259
Android.Mobifun.260
Android.Mobifun.261
Android.Mobifun.262
Android.Mobifun.264

1 2 3 4 5

Vulnerabilities for Android

According to statistics, every fifth program for Android contains a vulnerability (or, in other words, a "loophole") that lets cybercriminals successfully introduce Trojans onto mobile devices and manipulate them into doing whatever actions they need them to.

Dr.Web Security Auditor for Android diagnoses and analyses a mobile device’s security and offers solutions to address security problems and vulnerabilities.

Vulnerability descriptions

Download Dr.Web for Android