Trojan:Android/DroidKungFu.C forwards confidential details to a remote server.
When detected during scanning, F-Secure SAFE will prompt you for a desired action. You may assess the detected file and choose to Uninstall, Quarantine or keep it installed on your device. More information about these options can be found at Help Center: Assess files detected during scanning.
Monitoring-Tool:Android/DroidKungFu.C can be uninstalled by following the steps below:
Trojan:Android/DroidKungFu.C are distributed on unauthorized Android app sites as trojanized versions of legitimate applications.
Prior to installation, this new variant of the DroidKungFu family requests the following permissions:
Once installed, DroidKungFu.C attempts to root the phone (gain control of the system) by using exploits, including RageAgainstTheCage. These exploits are stored in the malware package and encrypted with a key.
The trojan also attempts to collect the following information from the compromised device:
The collected information is reported to remote command and control (C&C) servers at multiple locations:
This trojan was discovered by researchers at the North Carolina State University. For additional information, see: