Jeff, Odd encoding on the XML (an error in dexguard 5.2.00), and the fact that the application lacks an associated label in the manifest are the only "exploits" I have seen in it. The xml ecoding (missing attribute IDs) messes up some resource decoding tools, nothing major, apktool and Jeb handle it fine.
The missing label is interesting, it does indeed cause it not to show in the device admin listing. Other than the missing label, the malware is typical, and nothing special at all. -- Justin On Jun 10, 8:00 pm, Jeffrey Walton <[email protected]> wrote: > Hi All, > > Reading through [1], it mentions a couple of previously unknown exploits. > > Does anyone know anything about them (other than the article calling > them "Android operating system")? Do they stem from the kernel? Or are > they taking advantage of some linxml2 bugs (or equivalent)? > > Jeff > > [1]https://www.securelist.com/en/blog/8106/The_most_sophisticated_Androi... -- You received this message because you are subscribed to the Google Groups "Android Security Discussions" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/android-security-discuss?hl=en. For more options, visit https://groups.google.com/groups/opt_out.
