Skip to main content

Android Trojan Tells Contacts You're a Pirate

Symantec reports that Android.Walkinwat is the first mobile phone threat of its kind to actually discipline users that are downloading non-Market Android apps from apk repositories. The trojan is presented as a non-existent version of Walk and Text (v1.3.7), a legitimate app that's currently available on the Android Market.

"Android.Walkinwat can be found on several renowned file sharing websites throughout North America and Asia," Symantec said. "One could make the case that this app was intentionally spread in these regions by the creators of the threat in order to maximize the download prevalence and convey their message to as large an audience as possible, however one could also make the case the creator of Android.Walkinwat is attempting to undermine the publisher of Walk and Text."

Symantec said that once the user downloads and installs the unofficial app, it pretends to apply a fake crack when in essence it's actually gathering all the user's information. It then transfers the sensitive package to an external server while also sending out SMS messages to all contacts on the phone's contact list. On Android, that usually means everyone listed on Google Contacts containing a mobile number.

"Hey, I just downloaded a pirated App off the Internet, Walk and Text for Android," the SMS message reads. "Im stupid and cheap, it costed only 1 buck. Don't steal like I did!"

"Interestingly enough, the Trojan performs the above set of actions in a routine of Android.Walkinwat called 'LicenseCheck,' something traditionally used by legitimate apps for license management in conjunction with a Licensing Verification Library available for the Android platform to help prevent piracy," Symantec added. "The authors of the malicious code have taken an extra step to make sure that their app was obfuscated, which is another recommended measure to prevent piracy."

The fake app doesn't do anything else once it gathers evidence and sends out the embarrassing messages, only closing with a pop-up labeled as Application Not Licensed. "We really hope you learned something from this," the message reads. "Check your phone bill. Oh, and don't forget to buy the App from the Market."

It wouldn't be surprising if this app was created by the original team behind the official Walk and Text app.

  • lasaldude
    My friends would be like "Yeah?? So??? We already know you do that. You taught and showed us how to be free also!"
    Reply
  • osxsier
    lmao! Android is a joke right now...and Google is closing it further. But that is pretty funny...buy the app you cheap bastards!
    Reply
  • johnh2005
    That is absolutely brilliant. I am guessing that the makers of Walk and Text made this and distributed it to the torrent sites. Brilliant. Just Brilliant. I would get a heck of a laugh from this. I will make sure not to torrent it though as I do have quite a few contacts I would not want knowing that I sometimes go... YARR!!!!!
    Reply
  • garyshome
    iMAGINE THAT APP WRITERS WRITING TROJANS? Who would heve ever thoght? What is this world commong to?
    Reply
  • mdillenbeck
    Lets hope this isn't a bit of revenge by the developers. After all, writing a virus - even a well intentioned one meant to help enforce the law and embarrass lawbreakers - is still writing a virus. I believe many countries have legal codes about engaging in such activities. Additionally, there is an intent to cause financial harm by hoping they are not on an unlimited SMS plan.
    Reply
  • southernshark
    Android is full of fail, why anyone would buy one of those phones is beyond me.
    Reply
  • Anomalyx
    southernsharkAndroid is full of fail, why anyone would buy one of those phones is beyond me.Because it is way more secure than iOS. Yes, you read that correctly. Look at the results of the most recent Pwn2Own event before you even think about replying to this.

    Any platform can be compromised if you install malicious software on it, even the almighty Linux. This shouldn't take anything more than a grade-school education to understand. Just because you aren't smart enough to figure out that random pirated apps may be malicious doesn't mean that the rest of us should live in Apple's walled garden, being disallowed from installing anything they didn't approve.

    Personally, I'd rather own a feature(less) phone with nothing more than a 10-key pad than own an iPhone. Then again, I buy a phone for functionality, not because "it makes me look cool".
    Hint: iPhone doesn't really make you look cool, people just think it does.
    Reply
  • igot1forya
    Last I checked, Google leaves the option to install Non-Market apps up to the end user... why anyone would throw a hissy-fit over something that adds greater freedom is beyond me. Btw, the Market it's self is FULL of Trojans, but those apps serve you advertisements rather than virus'- thank goodness for the user feedback, else the Market would be a total loss.

    I may be biased though, I love my Android device(s)
    Reply
  • ProDigit10
    android is linux based, and in my opinion should allow developers to develop open source apps, for free. I don't want to pay for an app, that once you buy it, does not seem to be what you needed it to be.
    Reply
  • mistert
    Android phones are great but this is not about my phone vs your phone. We will leave that to the playground.
    Now that I have seen this article I would not install this app on my phone even if I bought if from the Marketplace. How could you trust the authors did not put some other unwanted code in the app. While I don't disagree with them trying to protect their work, I do disagree with their tactics which shows a tendency to deceive.
    Reply