Mobile phone industry this year, the momentum of development, the major mobile phone manufacturers have launched a new model of mobile phones, with the corresponding mobile phone frequently appear in various types of illegal applications, allows users to suffer information leakage, property damage and other troubles. , Tencent mobile phone housekeeper the first exposure of the VirtualApp technology black industry chain, the lawless elements to use the technology to promote malicious application behavior analysis. Tencent mobile phone housekeeper security cloud has been fully dynamic detection to protect the user's mobile phone security.
It is reported that VirtualApp is an open source Android APP virtualization engine that allows the creation of virtual space in which to run other applications in this virtual space, that is, more open applications.It is noteworthy that VirtualApp created virtual space, anyone can It installs, starts and uninstalls the installation package, and is not affected by the outside world, which means that the installation package can run even if it is not installed in the Android system.
As an open source multi-open application framework, VirtualApp has become a criminal unlawful profit channel.It is understood that there are malicious applications using VirtualApp to re-package itself, so as to avoid killing by antivirus software.A malicious application repackaging, the application package Name, name of the software camouflage, to pass the static detection of anti-virus software, allowing users to download mistakenly think it is safe software.
(Figure: malicious applications re-packaged with VirtualApp, in order to avoid antivirus software detection)
For malicious applications re-packaged with VirtualApp, Tencent mobile butler security cloud has been achieved dynamic detection of its Tencent mobile butler security expert Yang Qibo pointed out that due to VirtualApp permissions, criminals repackaged malicious applications, the startup page will be Insert ads and modify the application execution process through Hook, access to the application's privacy data, including passwords, data communications with the server, photos, etc. This not only endanger the safety of mobile phones, there is also the risk of stealing user privacy.
According to Tencent mobile butler security cloud test records found that the current adoption of VirtualApp technology to repackage malicious applications, mostly pornographic applications.Users download, if you accidentally click the page advertisement, it is possible to download the appropriate application and install to VirtualApp In. Compared with the conventional application promotion method, the application installed in this manner does not need to be installed through the Android Application Manager, and may also be downloaded without permission without the user's knowledge of the relevant risk application.
(Figure: re-packaged applications are inserted into the ad, there is the risk of privacy leaks)
For the black industry chain behind VirtualApp technology, Tencent Mobile Butler Security Cloud has dynamically monitored related VirtualApp applications and responded to new security threats in a timely manner. Meanwhile, on how to prevent risks, Tencent's mobile butler security expert Yang Qibo suggested that it can be downloaded Install Tencent mobile phone housekeeper and other security software, killing the risk of applications to avoid personal information disclosure and property damage.
This year the development momentum of the mobile phone industry, the major mobile phone manufacturers have introduced a new model of mobile phones, corresponding to the frequent occurrence of mobile terminals all kinds of irregularities, but allow users suffer from information disclosure, property losses and other troubles Recently , Tencent mobile butler took the lead in exposing the black industry chain VirtualApp technology, the use of the technology to promote the malicious application of unscrupulous elements to analyze the current Tencent mobile butler security cloud has been fully dynamic detection, to protect the security of the user's mobile phone.
It is reported that VirtualApp is an open source Android APP virtualization engine that allows the creation of virtual space in which to run other applications in this virtual space, that is, more open applications.It is noteworthy that VirtualApp created virtual space, anyone can It installs, starts and uninstalls the installation package, and is not affected by the outside world, which means that the installation package can run even if it is not installed in the Android system.
As an open source multi-open application framework, VirtualApp has become illegal criminals illegal profit channels.It is understood that there are malicious applications using VirtualApp to re-package their own, so as to avoid being anti-virus software killing. Malicious application re-packaged, the application package Name, the name of the software to disguise, through the anti-virus software, static detection mode, so that users download the software is mistaken for security.
(Figure: malicious applications with VirtualApp re-packaged, in order to avoid anti-virus software detection)
For malicious applications re-packaged with VirtualApp, Tencent mobile butler security cloud has been achieved dynamic detection of its Tencent mobile butler security expert Yang Qibo pointed out that due to VirtualApp permissions, criminals repackaged malicious applications, the startup page will be Insert ads and modify the application execution process through Hook, access to the application's privacy data, including passwords, data communications with the server, photos, etc. This not only endanger the safety of mobile phones, there is also the risk of stealing user privacy.
According to Tencent mobile butler security cloud test records found that the current adoption of VirtualApp technology to repackage malicious applications, mostly pornographic applications.Users download, if you accidentally click the page advertisement, it is possible to download the appropriate application and install to VirtualApp In. Compared with the conventional application promotion method, the application installed in this manner does not need to be installed through the Android Application Manager, and may also be downloaded without permission without the user's knowledge of the relevant risk application.
(Figure: re-packaged applications are inserted into the ad, there is the risk of privacy leaks)
For VirtualApp technology behind the black industry chain, Tencent mobile phone housekeeping security cloud has been related to the dynamic application of the relevant dynamic monitoring, and timely response to new security threats.At the same time, users how to prevent risks, Tencent mobile phone housekeeper security expert Yang Qibo suggested that you can download Installation of Tencent mobile phone housekeeper and other security software, the risk of application killing, to avoid personal information leakage and property damage.
