MSZombie.A - Chinese SMStrojan

Research: New Virus SMSZombie.A Discovered by TrustGo Security Labs
Sample credits: Pr0Zel and Tim Strazzere (Lookout security)
Files

• 4D13D1BC63026B9C26C7CD4946B1BAE0 com.bntsxdn.pic.apk
• A31245022C60FC50B81F7FFC4F4967B2 com.hxmv696.pic.apk 
• cafffdee7479a8816f4551ac8c3a0178 com.lzll.pic
• c71740ee94467ae70a71265116d54186 com.zqbb1221.pic
• 4084939a0864b645f6c6a915586fb1ab com.gmdcd.pic
• b6cacc0cf7bad179d6bde68f5c013e6e com.xqxmn18.pic
• 40f3f16742cd8ac8598bf859a23ac290 com.ldh.no1  

dropped:

• 9F972DBE36D4CE709AA21C291D632D31 a33.jpg.apk

Download (password infected)

LuckyCat.A Android APT malware

File: testService.apk
Size: 17810
MD5:  41B0C54AB4EF1A0983061B6F1354E562

Research: Adding Android and Mac OS X Malware to the APT Toolbox by Trend Micro

Sample Credit: Tim Strazzere Lookout Security

Download (password infected)

VDloader Android

1. File: zj_NinjaChicken_other.apk
Size: 5131151
MD5:  4BC1C8A05B8505662BE778B6DAD23B55




2. File: waterfall3dLive.boa.liveWPcube.apk
Size: 723022
MD5:  6AF90ADD478E4D27B4170FA791E635EE

Sample Credit: Tim Strazzere Lookout Security

Research: Symantec New Android Malware Spotted on Third Party App Markets

Download files (password infected)

New ZitMo for Android and Blackberry

MD5: e98791dffcc0a8579ae875149e3c8e5e
File zitmo.apk

MD5: 7d09ce7ff636c308b0bf43c0d1662652
File name:  zitmo.jar

MD5: 2451bd595bbc830ea76adb96a7f319f3
File name: zitmo1.cod

MD5: 6fe08b174c92fe439af0f84bd9643545
File name: zitmo2.cod

MD5: 763083a8627837b55316bf93c625c200
File name: zitmo3.cod

MD5: 2a63801d60c900c10ee13d42dc5fc4ab

File size: 549 bytes ( 549 bytes )

File name: seguridad.jad

Sample credits - Anonymous
Research:  New ZitMo for Android and Blackberry by Kaspersky

Download all files (password infected)  

DropDialer. A and DropDialer.B - Android SMS trojan

Research: Symantec Android.Dropdialer Identified on Google Play

DOWNLOADER DropDialer.a
File: com.nnew.GTAHDBackground.apk
Size: 3442089
MD5:  B7D33549AE6B438DF0A42838CACE4209

DOWNLOADED DropDialer.b

File: Activator.apk
Size: 15794
MD5:  1E0D68C2CA22471E83CC385E559A0A0D

Download - pass infected

Sample credit - Tim Strazzerre Lookout Security

MMMarketPay - Android Application buying trojan

 File: com.mediawoz.gotq.apk

Size: 4839186
MD5:  CD6F0C2FB0A5A9B2793F0BD9AED8E922

Research MMarketPay.A, New Android Malware Found in the Wild By TrustGo Security Labs On July 6, 2012 In Malware, Security
Sample credit:  Tim Strazzerre - Lookout security

 Download (password infected)

Android FindAndCall spyware

File: il.co.egv-3.apk
Size: 518611
MD5:  024E47BB9252C5537B94225C0E7D7932

Research Find and Call: Leak and Spam by Denis (Kaspersky)
Sample credit: thanks to anonymous, July 10, 2012

Download (password infected)

Apple IPhoneOS FindAndCall spyware

File  iPhoneOS/FindCall.A!tr.spy

File: FindAndCall 1.1.ipa
Size: 2940485
MD5:  4D99379EC9F2CA9A33BFE9841A931A80


Research Find and Call: Leak and Spam by Denis (Kaspersky)
Sample credit: thanks to anonymous, July 10, 2012

Download (password infected)

Android KungFu variant

File: _pl.byq.new_19_1.2.5.apk
Size: 81995
MD5:  079455DE5891F7E1BB19017C77F1BEC0


File: _com.tebs3.cuttherope_6_1.1.5.apk
Size: 90311
MD5:  45F86E5027495DC33D168F4F4704779C

Credit: thanks to anonymous, July 9, 2012

Download (password infected)

April 2012 - Dougalek.A - Android spyware

File

00e74c118fa3902e5c85fd8e37f3d084.apk
9d1625aa79b55a79064dac7a0ecc2f91.apk
857ee29d88796e1f1b7b440dc9eadc77.apk
b9622e587ae28cfff8ffc5645221e422.apk
c2dfe44d9f130033ecd89ba33f8a2e0a.apk
e8237a583fe7b2362b4addf01518600b.apk

Research McAfee: Android Malware Promises Video While Stealing Contacts - April 2012
Credit Thomas Wang

Download (password infected)

Android CI4 SMS Bot

Sample Credits: Tim Strazzere
Research: Lookout: Security Alert: CI4 SMS Bot

Download (password infected)

Android Security Suite Premium = New ZitMo

Sample Credits:   with many thanks to Arvind Kumar , June 20, 2012
Research:   Kaspersky SecureList Android Security Suite Premium = New ZitMo

Download (password infected)

See you in two weeks

Angus McIntyre

Greetings,
I will be traveling and will not have time for posts until June. If you sent any files to me recently and I did not post / did not reply, please accept my sincere apologies, it has been a busy period.

Please continue to share and upload files to  Contagio Community and Contagio Mobile dump where it will be available immediately to others via the main download link posted there.
I hope you all have a great end of spring and glorious summer.
Thank you
Mila

NotCompatible - Android Drive-by malware

  
Sample Credits:   with many thanks to Tim Strazzere, May 3, 2012
Research:   UPDATE: Security Alert: Hacked Websites Serve Suspicious Android Apps (NotCompatible)  - Lookout


Download (password infected)

Android Gamex Trojan

File: de.mehrmannd.sdbooster-GAMEX.apk
Size: 256139
MD5:  50836808A5FE7FEBB6CE8B2109D6C93A
Sample Credits:   with many thanks to Tim Strazzere, April 30, 2012
Research:      Security Alert: Gamex Trojan Hides in Root-Required Apps – Tricking Users into Downloads - Lookout

Download (password infected)

Android PJApps - 2011 - Liveprints wallpaper

File: Newfpwap_com_liveprintslivewallpaper.apk
Size: 1316981
MD5:  A84997B0D220E6A63E2943DA64FFA38C
Sample Credits:   with many thanks to anonymous April 28, 2012
 

Download  - password infected

Android Copy9 - commercial spy app - Potentially Unwanted (PUP app)

File:       Copy9 - commerical product (http://copy9.com - "The Number 1 solution for Spy"
MD5:     69B9691A8274A17CDC22E9681B3E1C74
Sample Credits:   with many thanks to Harsh, April 20, 2012
CleanMX report: http://support.clean-mx.de/clean-mx/viruses?id=1448570
Original location: http://copy9.com/download/copy9_23.apk

Download  - password infected

Fake Instagram - Fake App Tall Fraud - Android Malware

File:       Fake Instagram
MD5:     69B9691A8274A17CDC22E9681B3E1C74
Sample Credits:   with many thanks to Tim Strazzere, April 18, 2012
Research:   The Continuing Saga of Fake App Toll Fraud  - Lookout

Download  - password infected

Android.Qicsomos - Fake CarrierIQ detector-SMS Trojan

File:             Android.Qicsomos.apk
MD5:     69B9691A8274A17CDC22E9681B3E1C74
Sample Credits:   with many thanks to Anonymous,April 17 2012
Research:   Symantec: The Day After the Year in Mobile Malware?
Symantec: Android.Qicsomos

Download  - password infected

Spyera (Android commercial App) - aka Tigerbot

Looks like  Tigerbot is a commercial spy app developed by Spyera



File: spyera.apk aka Tigerbot
MD5:  9D0B1B6BBC1568A8A0C7F186B8944905
Sample Credits:   with many thanks to Tim Strazzere to the sample and information, Lookout Security, April 11,  2012
Research:   NQ: Security Alert: New Android Malware — TigerBot — Identified in Alternative Markets

Download  - password infected