Android.Uracto

Android.Uracto is a Trojan horse for Android devices that steals personal information and sends spam SMS messages to contacts found on the compromised device.

Android package file
The Trojan may arrive as a package with the following characteristics:

Package names:

• com.android.MindUranai
• com.example.bookshare
• com.example.jkmobile
• com.example.n64emu
• com.example.newsroid
• infraredcamera.solution
• manavi.solution
• manga.solution
• solution.newsandroid
• solution.tubeplayer

Name: Will vary and includes TubePlayer, MAMANAVI, and Infrared X-ray.


Installation
Once installed, the application may display various icons depicting the following:

• a pink background with Janaese text
• the Android robot with Japanese text
• a pink play button with "TubePlayer" text
• "mama NAVI" with text
• a book with gold star and Japanese text
• a camera lens with "Infrared X-ray" text
  

This Trojan is a variant of Android.Maistealer and Android.Enesoluty.

For more information, please see the following resources:

• Android.Uracto Used to Trick Mothers, Anime Fans, Gamers, and More
• Android Malware Spams Victim’s Contacts
• Anime Character Anaru Exploited to Help Steal Android Contact Details
• Anaru Malware Now Live and Ready to Steal
  
• Fake Antivirus App Steals Contact Data on Mobile Devices