Virus Profile: Android/WormHole.A

Threat Search
Print
   
Virus Profile information details
Risk Assessment: Home N/A | Corporate N/A
Date Discovered: 11/9/2015
Date Added: 11/9/2015
Origin: Unknown
Length: N/A
Type: PUP
Subtype: Vulnerability
DAT Required: N/A
Removal Instructions
   
 
 
   

Description

Android/WormHole.A detects one of Baidu's SDK, which is vulnerable to attacker.

Indication of Infection

User's device could be:
1, location information monitored.
2, Installed application without notification
3, Added contact items.
4, Application list monitored.
...

Methods of Infection

User installs any applications with the certain Baidu SDK installed.
   

Virus Characteristics

One of Baidu's SDK creates http service on users' device, with this http service to switch data between Baidu applications or other applications used this SDK. Unfortunately, the http service has very weak authorization checking, an attacker can easily use this http service to perform malicious payloads on user's device.
   
Uninstall the detected applications
   

PC Infected? Get Expert Help

McAfee
Virus Removal Service

Connect to one of our Security Experts by phone. Have your PC fixed remotely - while you watch!

$89.95