Next the malware attempts to trick victims to pay while in the background collecting user information and upload it to the server. Thus victims cannot follow the normal steps to uninstall the app.įorcing the user to activate the device manager. If the user does activate the device manager, the malware will respond to any attempt to delete the app by forcing a return to the desktop. If the victim does not comply, they cannot use the phone. If the user attempts to cancel, the app occupies the entire screen, effectively requiring the user to activate the device manager. They carry app names such as “midnight Qvod player,” “16-year-old-girl night player,” “midnight video player,” and “adult theater player.”Īfter the victim installs and runs one of these malicious apps, it forces the user to activate the device manager. These malicious apps are found mainly through forums, illegal video sites, and IM groups. These apps contain a variety of malicious behaviors, including collecting user information, sending SMS that deduct payments, blocking legitimate SMS, pushing other apps (including malicious apps), and forcing users to activate the device manager. One common feature of these malicious apps is to disguise their own icons to appear as the Qvod player or to use pornographic icons to attract users to install them. In spite of this, we have recently seen a number of malicious fake versions of Qvod.
Due to piracy allegations and a threatened fine, the company went out of business in 2014.
Qvod used to be a popular video player and developer in China.
0 kommentar(er)
