본문 바로가기
Security_News/국내보안소식

[스미싱주의] 비상시 대비계획입니다 문자주의

Ryansecurity 2014. 9. 28. 23:54
728x90



민방위 일정 및 개별 통지서 인것처럼 위장함  apk를 다운로드 받게됨.

해당 apk 다운도르후 분석해보니 

파일 이름:훈련통지서.apk
탐지 비률:16 / 55

해당정보가 탈취된다 

android.permission.CHANGE_NETWORK_STATE (change network connectivity)
android.permission.READ_SYNC_SETTINGS (read sync settings)
android.permission.USE_CREDENTIALS (use the authentication credentials of an account)
android.permission.PROCESS_OUTGOING_CALLS (intercept outgoing calls)
com.google.android.c2dm.permission.RECEIVE (Unknown permission from android reference)
android.permission.READ_SYNC_STATS (read sync statistics)
android.permission.INTERNET (full Internet access)
android.permission.MANAGE_ACCOUNTS (manage the accounts list)
android.permission.SEND_SMS (send SMS messages)
android.permission.WRITE_SMS (edit SMS or MMS)
android.permission.ACCESS_NETWORK_STATE (view network status)
android.permission.WRITE_CALL_LOG (write (but not read) the user's contacts data.)
android.permission.READ_CALL_LOG (read the user's call log.)
android.permission.READ_SMS (read SMS or MMS)
android.permission.WRITE_EXTERNAL_STORAGE (modify/delete SD card contents)
android.permission.RECEIVE_SMS (receive SMS)
android.permission.WRITE_CONTACTS (write contact data)
android.permission.RECEIVE_BOOT_COMPLETED (automatically start at boot)
android.permission.MODIFY_PHONE_STATE (modify phone status)
android.permission.AUTHENTICATE_ACCOUNTS (act as an account authenticator)
android.permission.CALL_PHONE (directly call phone numbers)
android.permission.WRITE_SETTINGS (modify global system settings)
android.permission.READ_PHONE_STATE (read phone state and identity)
android.permission.WRITE_SECURE_SETTINGS (modify secure system settings)
com.example.callrecorder.permission.C2D_MESSAGE (C2DM permission.)
android.permission.ACCESS_WIFI_STATE (view Wi-Fi status)
android.permission.RECEIVE_MMS (receive MMS)
android.permission.WAKE_LOCK (prevent phone from sleeping)
android.permission.CHANGE_WIFI_STATE (change Wi-Fi status)
android.permission.RECORD_AUDIO (record audio)
android.permission.READ_CONTACTS (read contact data)
android.permission.GET_ACCOUNTS (discover known accounts)

C&C 정보는 한국 211.****.***.***


대책 : 출처가 불분명한 url은 절대 누르지 않고 삭제해야 하며 

모바일용 백신은 꼭 설치한후 최신 업데이트를 유지해야한다




728x90
저작자표시 비영리 변경금지

'Security_News > 국내보안소식' 카테고리의 다른 글

[스미싱주의] 드디어 저희결혼합니다 축하해주세요  (0) 2014.10.08
[스미싱주의] 민방위 훈련 일정 안내입니다. 스미싱문자 주의  (0) 2014.10.03
등기소포전달 불가 스미싱주의  (0) 2014.09.28
[스미싱주의] 선물 택배로 보냈어 확인해봐 문자주의  (0) 2014.09.25
정보보호 준비도 평가 시행  (0) 2014.08.17

'Security_News/국내보안소식' Related Articles

티스토리툴바