Sophos said that this latest problem goes with a legitimate Chinese game, “The roar of the Pharaoh”. The game is said to be not distributed on Google Play.
According to the security firm’s blog post, “Once installed the malicious application gathers sensitive information (IMEI, IMSE, phone model, screen size, platform, phone number and OS version) and sends it off to the malware’s authors. Like many other mobile Trojans, this once sends SMS messages to premium rate SMS numbers and is capable of reading you SMSs as well.”
The company said that the malware is being detected, which is attached to the game app, as ANDR/Stiniter-A.
Sophos warns that the app doesn’t ask for permission during installation of the app. They added that the malware also attempts to communicate with four .com domains with a path of “tgloader-android.”
They noted that, “Criminals love the free money laundering service provided by mobile phone providers. They can set up premium rate SMS numbers in Europe and Asia with a little difficulty.”
Image Source: Activeresponse.org