This Trojan injects malicious code to perform malicious behavior on normal application.
In this case, users who frequently download application via black market can be easily infected by this malicious application.
2. Spreading path and symptoms of infection
It, spread via black market, aimed at Dandelion Live Wallpaper and tries to inject malicious code for tampering.
This malicious application is named "ADRD", and has no execution icon.
This malicious application has same Wallpaper display as normal application.
Following figures are showing differences between normal and malicious application.
We don't need to let you know which one is for malicious.
Malicious application is always requiring a lot of grants. And the size is also little bit different between normal and malicious app.
3. How to prevent
To use PC safely from security threats of these malicious attachments, we recommend following "Security management tips" for general users.
INCA Internet (Security Response Center / Emergency Response Team) provides diagnosis/treatment function with nProtect Mobile for Android for detecting such as malicious file stated above and runs responding system against various security threats.