Clicky

Thursday, September 27, 2012

10 samples of SMSZombie Android SMS Trojan




45099416acd51a4517bd8f6fb994ee0bb9408bdd80dd906183a3cdb4b39c4791.apk            098c9874ca14b2544846b24ab8cea204
5f0dbf2b42bf9f400ea4cc81030de3eacd676e54b671a524259a5ceff938e210.apk            4084939a0864b645f6c6a915586fb1ab
576639b9c12143e558a4ff8866d6b0e1370c0705cf8701dfc296b497a4de20c7.apk            40f3f16742cd8ac8598bf859a23ac290
c9bb707b78a714771ade4c1b4adb1cab8e4e16915f0a022e3f742eba93c3334c.apk            4d13d1bc63026b9c26c7cd4946b1bae0
741684cfcbc861b076bd7561be29f8bd3f1814b9049034a0412601f786f0f0f0.apk            9f972dbe36d4ce709aa21c291d632d31
72f9752c809d8cd12da34b20f202cdf578c338ec956491cb7b5f18c6d4cbc250.apk            a31245022c60fc50b81f7ffc4f4967b2
f391cc4ea5961d649bc62a0466560dc76eaebcf26f0c8452c671c2d2b34361b8.apk            a354baf35efcc57752db8bd6ee7f6115
b48be6fec1c25afcf274c9f8c6ac038015f2b04c87a9b8da6519ee3510ef30a2.apk            b6cacc0cf7bad179d6bde68f5c013e6e
319a962f486080b4a7dbe1896a4f1a345d86c5644ebedb8f28ab2b737cf9deeb.apk            c71740ee94467ae70a71265116d54186
eb84256836a99417b13159ad285430bc879eb52fd755d90caec766b17793a265.apk            cafffdee7479a8816f4551ac8c3a0178

Sample credit Pau Oliva Fora

Download (email me if you need the password / use the contagio password scheme)



SHA256: f391cc4ea5961d649bc62a0466560dc76eaebcf26f0c8452c671c2d2b34361b8
File name: F391CC4EA5961D649BC62A0466560DC76EAEBCF26F0C8452C671C2D2B34361B8.log
Detection ratio: 20 / 43
Analysis date: 2012-09-20 07:07:54 UTC ( 1 week ago ) 

Avast Android:SMSAgent-AJ [Trj] 20120920
BitDefender Android.Trojan.SMSZombie.B 20120920
CAT-QuickHeal Android.Zombie.B 20120920
Comodo UnclassifiedMalware 20120920
DrWeb Android.SmsSend.186.origin 20120920
Emsisoft Trojan.AndroidOS.SmsZombie!IK 20120919
ESET-NOD32 a variant of Android/TrojanSMS.Agent.ET 20120919
F-Secure Trojan:Android/SmsZombie.A 20120920
Fortinet Android/SMSZomb.A 20120920
GData Android.Trojan.SMSZombie.B 20120920
Ikarus Trojan.AndroidOS.SmsZombie 20120920
Jiangmin TrojanSpy.AndroidOS.aym 20120920
Kaspersky HEUR:Trojan-Spy.AndroidOS.SMSZombie.a 20120920
Kingsoft Android.Troj.Smszombie.a.(kcloud) 20120918
Microsoft Trojan:AndroidOS/SmsZombie.A 20120920
PCTools Android.Smszombie 20120920
Sophos Andr/SMSZomb-A 20120920
SUPERAntiSpyware - 20120911
Symantec Android.Smszombie 20120920
TrendMicro-HouseCall TROJ_GEN.F47V0826 20120920

3 comments:

  1. Ah, the download link points to one of the Fakeflash samples. Is that intentional - i.e., is that sample really an SMSZombie, or is it just a mistake (wrong download link)?

    ReplyDelete
    Replies
    1. http://contagio.deependresearch.org/files/Mobile/smszombie.zip

      Hey, Bontchev
      This address is correct download link

      Delete