Updated July 18, 2019
Trojan Bank Rildock Trojan with Russian focus,
, In some arrangements direct their ideas to European market.
Malicious software quickly changed four contracts
Another small percentage for France and Italy, Ukraine and the United Kingdom,
Although 90% of the victims are in Russia, this is after June 25
Kaspersky Blog [
The affected devices are spread using Rildock SMS, t.i.
Applications for popular media services in Russia. The sufferers will accept
Text messages contain a malicious link to a fake website
This seems to be a popular free advertising service.
So, I was asked to download a new type of mobile app.
This is actually a Trojan horse. You need to contribute to create a duplicate system
Allows the app to install unknown sources on the device.
Reactic users were requested to use other features
To provide access when a user rejects or rejects an application,
Unlimited open windows.
Malicious software is a way to install Trojan horses after getting the necessary permissions.
Just like a normal SMS app (yes, click on the description description)
Click the tool screen before exiting the tool screen.
If this device is infected, the antivirus software can communicate completely
He manages teams, various servers and teams.
The researchers said that the malware sent data to the device, including:
IMEI, phone number, country, mobile phone company, phone number,
Root access, operating system version, contact list, contact list
Install the application and receive a text message.
Some features of the malware library:
* Receive emails from the criminal server
* Get customized files with C&C syringes, as well as regular injection lists
* Find the name of the software package created by the AccessEvent event in the list of banking / antivirus / public programs.
* Install the software as a standard SMS program
* Open phishing on other phishing pages by opening other programs and applications
To prevent transmission, researchers recommend that users never go out
To install the program, only suspicious links from public sources are sent via SMS
Then check the permissions provided during installation.