Mobile viruses, who dismantled?

I just a couple of minutes ago, I received the following SMS:
"Subscriber Kate left You a message. Open:"
From the number +7 (968) 711-33-01

The link jar, who will be able to disassemble ask in the comments, that is very interesting, that it was supposed to do, as he was not engaged in the analysis of such viruses. If there is no available file to email myself a copy saved, I will upload to some file sharing.

Just want to know whether Choate the experience of dealing with such things, if Yes then share your experience as the community of Habra for such things are not kept, but only for interest examines these viruses, but I want to protect others.
October 8th 19 at 02:38
3 answers
October 8th 19 at 02:40
Don't mean to be snobby (although, who knows), but still.

a) Very cool it would be to read the help. It can be read even with negative karma.

b) Who can then publish the post!

From the same help you can see that for this ban. So, don't count on a queue to post this post.

C) Phrases such as "Hey, people, I'm new, I'm too bored to read previous questions and use the search, check out bayanchik, the post can't — karma there is no" will inevitably lead to a drop in karma.


And it was a really good and useful tips.
Edited the question, be sure to read the help — thank you. - Kailey.Padberg34 commented on October 8th 19 at 02:43
October 8th 19 at 02:42
The author, you losers. Here's what you can do in a minute:

1) download the archive at the link
2) total commander, press Ctrl + PgDn (to unpack zip-archive, which jar is).
3) see the following file to root:

The message has been deleted by the sender.

[item number="3652" prefix="8230011"/]

icon.png icon MMS in the style of the iPhone

To view your MMS Photo, click "Continue"

(contains only BOM utf-8)

The core kind of, you know, several compiled Java classes, in c.class see the line:


You still have a doubt, is that the applet does?
> Just want to know whether Choate the experience of dealing with such things

All you can do is find the aggregator to control the number specified in the config, and write a complaint. But schoolchildren virus writers are probably hundreds of these accounts, they will change a few numbers and on the road. Also, some aggregators are interested in passing through them cash flow, and especially with such vesham not fighting (except for particularly egregious violations).

Theoretically also, there is a violation of Russian law, under articles of fraud and spread of malicious code, also there is a reason to check companies-aggregators Prosecutor's office. But I have not heard of a precedent of prosecution in such cases neither the writers, nor of the companies, aggregators and mobile network operators, from which we can conclude. now that our bodies on this matter do not care.

Also, there are so-called affiliate programs on the "monetization of mobile traffic." From the point of view of the law, they can be checked and held accountable for organizing and aiding violations of the law, but nobody does.

Your article on habré are not needed. You are unlikely to write something beyond what is already know. Better pour yourself a Cup of tea and eat another French bun. - Kailey.Padberg34 commented on October 8th 19 at 02:45
And Yes, after, if you want to protect others, there's only one way to do that is to penetrate the company developing the mobile OS like Android, Windows or fawn, and incorporate protection from viruses directly in the OS. This is the only working way to fight. See, for example, that in this direction was made by the company Apple. - antonette.Gislas commented on October 8th 19 at 02:48
October 8th 19 at 02:44
SMS standard Sender. Sends to the short message number
And there could be something else?) This is so trite and cliche. - Kailey.Padberg34 commented on October 8th 19 at 02:47

Find more questions by tags viruses