Recently more popular a malware attack users phone manner, that is, the usage of the popular software such as software name, company name, etc., so as to confuse the user, secretly violate user cell phone safety.
This type of software generally exist some characteristics: name and name of the system software, such as "sets a similar" and "process management" and "network", etc.; manufacturers mark for: Nokia or Nokia;Identification tips: If your software vendor is Nokia, it corresponds to the certificate signature is Nokia, Nokia
Content or Symbian
Safety steward recently successfully intercept such malicious software – SeConUpdater.
It pretends to be a Nokia official PC Suite of plug-ins, illegal mount mobile phone security user violations.Let safety steward to expose its flesh, and see how it is disguised bullying.
First, the first compare nuoji to official software and malicious software:
1. certificates
Enter the mobile phone's program management interface, you can see the software's certificate details, the following icon in the red portion:
2. contains process different
Nokia official chupin software contains only one process SeConupdate.exe, illegal software, besides official software processes of the same name, but also extra added three processes, the following icon red parts:
Second, then take a look at some of the malware, what kind of hooliganism:
The malicious software after the installation is complete, the program icon is not displayed, enter the Security Manager's process management saw the malicious softwareParts of the process running in the background, as the red light marking process:
2. Select the terminate the process, and then use Security Manager detects it is powered on since the start: select Reset phone, as
Reboot into process management found this process still exists, you cannot close the post since the start.
After installation the program icon, the background does not run automatically, cannot turn off the power on self starting, these hooliganism at a glance.
No comments:
Post a Comment