The process of Godless malware revealed from decompiling the source code.One of the Godless malware app is Summer flashlight according to Trend Micro.
So,I decompiled the dex file of summer flashlight apk into java files.This app packs with mobo SDK which enables the exploit to root install.The target of this app is done through:
1.FastInstallService.java:This set of code makes the device to install service for root install.
2.PMservice.java:This set of code enables to install the package.
3.ScreenChargeReceiver.java:Alerts the root install service when the screen is turned off.
4.C0925A.java:Alerts the service about root status whether success or failure.
After rooting,the service install some unremovable packages without any system privileges.
So,I decompiled the dex file of summer flashlight apk into java files.This app packs with mobo SDK which enables the exploit to root install.The target of this app is done through:
1.FastInstallService.java:This set of code makes the device to install service for root install.
2.PMservice.java:This set of code enables to install the package.
3.ScreenChargeReceiver.java:Alerts the root install service when the screen is turned off.
4.C0925A.java:Alerts the service about root status whether success or failure.
After rooting,the service install some unremovable packages without any system privileges.
Comments
Post a Comment