Researchers at Russian anti-virus company Doctor Web recently came across new Android malware, Android.DDoS.1.origin, which is designed to launch DDoS attacks and send SMS messages.
"Android.DDoS.1.origin creates an application icon similar to that of Google Play," writes TechEye's Nick Farrell. "If the user decides to use the fake icon to access Google Play, the application will be launched. This means that users will not even be aware that they have been infected."
"When launched, the Trojan tries to connect to a remote server and, if successful, it transmits the phone number of the compromised device to criminals and then waits for further SMS commands," Doctor Web reports. "Supported directives include attack a specified server and send SMS."
"When it receives a DDoS attack command, the malware starts to send data packets to the specified address. ... When it receives a command to send an SMS, it immediately spams the recipient," writes The Next Web's Emil Protalinski. "The infected device can hurt its victims not just by significantly reduced performance, but by unexpected charges for accessing the Internet and sending text messages."https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
"Doctor Web goes on to say that the app can cause the phone to perform poorly, and can actually run up the owner’s bill by texting premium numbers," notes VentureBeat's Meghan Kelly.