Fortinet Blog | News and Threat Research
  • Products
  • Solutions
  • Service & Support
  • Partners
  • Corporate
  • Resources
  • How to Buy

Controlling Android / Zitmo by SMS commands

by RSS Axelle Apvrille  |  June 21, 2012  |  Category: Security Research

A new sample of Zitmo is out, pretending to be an Android Security Suite. Like others in Zitmo, the malware is a SMS spy: it forwards incoming SMS message to a remote server. This particular sample responds to a few basic SMS commands we have reversed.

In the following video, we show one of these commands in action: a SMS whose body is ”/” and followed by a phone number sets up a new phone number for the spy. Then, all future incoming SMS are also forwarded to that phone number.

REXML could not parse this XML/HTML: 
<iframe width="420" height="315" src="http://www.youtube.com/embed/DCh6OJhMChw" frameborder="0" allowfullscreen></iframe>

For more information, we have written a detailed description of the malware.

– the Crypto Girl

by RSS Axelle Apvrille  |  June 21, 2012  |  Category: Security Research
Tags: android sms Zeus zitmo
comments powered by Disqus

Category

  • All
  • RSS Subscribe
  • Security Research
  • RSS Subscribe
  • Industry Trends & News
  • RSS Subscribe

FortiGuard Labs on the Web

  • Twitter Twitter
  • Facebook Facebook
  • LinkedIn LinkedIn
  • Youtube Youtube

Monthly Archives

  • May 2013 8
  • April 2013 17
  • March 2013 12
  • February 2013 11
  • January 2013 12
  • December 2012 8
  • November 2012 7
  • October 2012 4
  • September 2012 7
  • August 2012 7
  • July 2012 9
  • June 2012 17
  • May 2012 14
  • April 2012 16
  • March 2012 15
  • February 2012 11
  • January 2012 6
  • December 2011 4
  • November 2011 6
  • October 2011 11
  • September 2011 2
  • August 2011 2
  • July 2011 4
  • June 2011 6
  • May 2011 6
  • April 2011 5
  • March 2011 7
  • February 2011 5
  • January 2011 7
  • December 2010 8
  • November 2010 11
  • October 2010 3
  • September 2010 8
  • August 2010 4
  • July 2010 9
  • June 2010 9
  • May 2010 9
  • April 2010 6
  • March 2010 8
  • February 2010 6
  • January 2010 9
  • December 2009 8
  • November 2009 6
  • October 2009 6
  • September 2009 8
  • August 2009 5
  • July 2009 8
  • June 2009 7
  • May 2009 4
  • April 2009 7
  • March 2009 9
  • February 2009 4
  • January 2009 1
  • Older

Popular topics

virut zitmo Mobile Security trojan FortiGate symbianos hashdays Firewall mobile phone adobe botnet facebook Anti-Spam conference webinar hacking challenge BYOD Malware UTM Security Research challenge bredolab microsoft Antivirus iphone exploit Threat Landscape mobile SpyEye privacy symbos/yxes reverse engineering apple stuxnet mobile malware Mac OS X Cryptography Fortinet network security Anonymous derek manky sms reversing Windows Zeus android google symbian mobile phones