Ropin.A is an application that gathers data from an infected device, and later forwards the data to a remote server.
F-Secure's Mobile Security product blocks installation of this program with default settings.
Ropin.A is an application that comes bundled with LeadBolt advertisement modules. While advertisement modules or SDKs are not necessarily harmful, this particular module leaks out personaland confidential data from the device to a remote site without the user's knowledge.
Ropin.A collects and forwards the following data to a remote server:
- Carrier's numeric code
- Carrier's name
- Date and time
- Device manufacturer
- Device model
- Device version
- International Mobile Equipment Identity (IMEI) number, or Device ID
- Local IP address
- Location (Latitude and Longitude)
- Mobile Country Code
- Network and SIM state
- Phone number
This detection does not guarantee the maliciousness or cleanliness of the application module, but detects the presence of LeadBolt advertisements.