Awesome

Android Malware Example

this project is a security proof of concept that shows the ability of simple android SDK features to implement a Malware feature set on Android phones.

Note: This program is not intended to be stealthy or use bugs in the androind OS/SDK to hid the application or the install of it. This software should not be used in the wild, or without the express concent of the device owner/operator

The Android Malware Example demonstrates the following abilites:

1. Using a Command and Control server to send commands to the device

2. Use of encryption for the following:

3. SSL communications with the server

4. SSL certificate validation to prevent SSL MiTM attacks

5. encrypt files before sending to the server

6. Ransomware feature to encrypt files on the device SD card

7. Background service which restarts on phone boot

8. SMS listener for inbound command activation

9. The following Malware Features are implemented and send thier data to the CNC Server

10. Get Wifi Network information

11. Get Phone information

12. Get Accounts configured on the device

13. Get all Contacts on the phone

14. Get the Phone Logs

15. Get SMS Logs

16. Get Bluetooth device information

17. Get System Logs

18. Get GPS Location

19. Get list of files on the SD Card

20. Send a File from the device to the CNC Server

21. Download a file from a URL and place it on the phone.

22. Encrypt/Decrypt all files on the SD card with a password (Ransomware)

23. Record audio on the device

24. Get list of installed Applications.

25. Send and SMS message to a phone number.

26. Configure a delay to check back with the CNC server

27. The following features are not implemented due to recent changes in the SDK which prevent them

28. access to browser history via the SDK

29. SDK access to the Camera in a way which hides the UI and takes a picture