DroidCleaner: Android malware that infects PCs

[Jack]

DroidCleaner, an Android app that claims to free up smartphone memory but actually infects connected PCs, has been removed from Google Play but is still available from third-party app stores.

Kaspersky Lab claims that DroidCleaner demonstrates a new attack vector against PCs. While it has come across PC malware that infects connected smartphones, this is the first time it has found malware going from phone to PC.

When it discovered the malware, it was available from the official Google Play app store (Google has since removed it). It’s an app that promises to accelerate Android smartphones by freeing up memory – but it doesn’t. A very basic GUI display 'pretends' this is happening to deceive the user; but, in reality, it first downloads a trojan known to Kaspersky as Backdoor.MSIL.Ssucl.a, and then waits for the user to connect the device to a PC – “for example,” suggests Kaspersky, “to change the music files on the device.”

Successful transfer from the device to the PC is via autorun.inf. This is perhaps the least efficient part of the malware since the latest Windows operating systems have AutoRun disabled by default for external drives. However, Kaspersky suspects that there are enough older versions used by enough ‘unsophisticated’ users to make the malware worthwhile for the attacker. “It is those users who use outdated OS versions that are targeted by this attack vector,” says the company.

Read more: http://www.infosecurity-magazine.com/view/30560/droidcleaner-android-malware-that-infects-pcs/

 

[Malware Man]

DroidCleaner, an Android app that claims to free up smartphone memory but actually infects connected PCs, has been removed from Google Play but is still available from third-party app stores.

Kaspersky Lab claims that DroidCleaner demonstrates a new attack vector against PCs. While it has come across PC malware that infects connected smartphones, this is the first time it has found malware going from phone to PC.

When it discovered the malware, it was available from the official Google Play app store (Google has since removed it). It’s an app that promises to accelerate Android smartphones by freeing up memory – but it doesn’t. A very basic GUI display 'pretends' this is happening to deceive the user; but, in reality, it first downloads a trojan known to Kaspersky as Backdoor.MSIL.Ssucl.a, and then waits for the user to connect the device to a PC – “for example,” suggests Kaspersky, “to change the music files on the device.”

Successful transfer from the device to the PC is via autorun.inf. This is perhaps the least efficient part of the malware since the latest Windows operating systems have AutoRun disabled by default for external drives. However, Kaspersky suspects that there are enough older versions used by enough ‘unsophisticated’ users to make the malware worthwhile for the attacker. “It is those users who use outdated OS versions that are targeted by this attack vector,” says the company.

Read more: http://www.infosecurity-magazine.com/view/30560/droidcleaner-android-malware-that-infects-pcs/

Hello,

I have a Android phone. I don't use any security program as I personally don't see the need for a antivirus on Android. I watch what I download from Google Play and I read the app permissions!

 

[Exterminator]

I use comodo just because the chance for infection is always there.Not to mention it contains other features such as :

• Anti Theft
• Process Manager
• Software Manager
• Call/SMS Blocking
• Backup
• Private Space
• Traffic Monitoring
• Scheduled Tasks

Has a really low price too, $0.00

The danger of getting an infection is very real on android as well as iOS.There are many good free ones. I wouldnt leave my PC unprotected why would I leave my smartphone unprotected.

 

[Malware Man]

I use comodo just because the chance for infection is always there.Not to mention it contains other features such as :

• Anti Theft
• Process Manager
• Software Manager
• Call/SMS Blocking
• Backup
• Private Space
• Traffic Monitoring
• Scheduled Tasks

Has a really low price too, $0.00

The danger of getting an infection is very real on android as well as iOS.There are many good free ones. I wouldnt leave my PC unprotected why would I leave my smartphone unprotected.

Hello,

I just never bothered with getting a security application. I doubt any of my friends are using a security application lol. I may have a look on the store now and see what ones are available Those look like some nice features in COMODO. I may download it and give it a go.

 

[softwareFREEk]

beware what you download and install even from Google Play

“Superclean” is DroidCleaners identical twin

 

[Malware Man]

beware what you download and install even from Google Play

“Superclean” is DroidCleaners identical twin

Thanks for letting us know!

I mostly only download games. But before I download regular apps that don't look right I read the reviews and check the permissions. I hate the annoying apps that spam your notifications with all these ads to download another app that is obviously spyware or some other nonsense.