• After 15+ years, we've made a big change: Android Forums is now Early Bird Club. Learn more here.

Control system settings & manually combat malware for (rooted user) help !

lazyinformant7

lazyinformant7

Lurker
Problem 1:
There's a certain app that's automatically configuring my system settings to 'allow app' to install from 'unknown sources'

1a. What's the best way to identify (this) specific malware code (and in general) from a decompiled app?

2a. Is this an 'activity, intent or service' that's executing this code?

3a. Is a app forced to declare 'activities, intents and services' via manifest.xml?

4a. Can I force the setting to 'Don't allow' via something like build.prop?

Problem 2:
In developer settings, my usb connection protocol is set to 'Allow file transfer' instead of 'Charge This Phone' when I connect my phone to anything.

2b. Is there a way of controlling this or setting specific commands?

Problem 3:
Anti-malware apps do a good job in general but they don't always pick up every malicious app or hidden code.

3b. Does anyone know any good resources, scripts, tips, guides or methods of combating malware manually? (Please exclude generic tips such as 'download from trusted sources' as the intentions are to disect malicious code and learn from it )
 
If you are having a lot of malware issues, you might want to think about re-flashing your phone with its stock ROM. This will return it back to its original unrooted state.
Rooting gives not only you more access to otherwise protected system resources, but also a lot of malware. While there are some exploits that are able to get system-level access on an unrooted device, the majority of them are just limited to the general usage, data partition. But once rooted, the operating system itself that previously had restricted access is now more open to things like malware too.
 
By the rather formal way you've laid out your questions. Are you researching into Android malware and malicious apps? Is this for a college or company project or something?
 
svim said:
If you are having a lot of malware issues, you might want to think about re-flashing your phone with its stock ROM. This will return it back to its original unrooted state.
Rooting gives not only you more access to otherwise protected system resources, but also a lot of malware. While there are some exploits that are able to get system-level access on an unrooted device, the majority of them are just limited to the general usage, data partition. But once rooted, the operating system itself that previously had restricted access is now more open to things like malware too.
Click to expand...

Thank you for the reply however, you just explained the vulnerabilities associated with becoming a superuser, but flashing a ROM doesn't fix the issue, it is just running away from it.

Every beginner to moderate superuser is aware of that information - This is why I mentioned, 'please don't include generic tips' and 'this is for dissecting anti-malware purposes'

I'm looking for more technical information, stuff only experienced ROM/APP developers and anti-malware security teams know.
 
mikedt said:
By the way you've laid out your questions, are you researching into Android malware and malicious apps? Is this for a college or company project or something?
Click to expand...

This is just personal studies.

Ever since I downloaded & installed 'es-file explorer' & discovered it was taking screen shots of my lock screen was really unnerving, made me wonder what apps can/do without your knowledge. Do note: this is an app vastly used by the public & it piggy backs it's way into your phone through ads. tip: would suggest adblocking utlilties or to locate and disable/remove related activities/source code.

Not only that, after going through system files and just having a general look around... Google pretty much records, and spies on everything you do & it's creepy. Tip: would suggest compiling a custom made firewall to counter - afwall app if you're lazy

Inconsideration to the fact that phones will only become more invasive & intergrated into future generations... they hold all important information like bank details, current location, family etc. & more than half the world already owns one.

It would pay off to be knowledgable in the field sincr the person sitting next to you could be emptying your bank account & you wouldn't know until it was too late :/
 
lazyinformant7 said:
This is just personal studies.

Ever since I downloaded & installed 'es-file explorer' & discovered it was taking screen shots of my lock screen was really unnerving, made me wonder what apps can/do without your knowledge. Do note: this is an app vastly used by the public & it piggy backs it's way into your phone through ads. tip: would suggest adblocking utlilties or to locate and disable/remove related activities/source code.

Not only that, after going through system files and just having a general look around... Google pretty much records, and spies on everything you do & it's creepy. Tip: would suggest compiling a custom made firewall to counter - afwall app if you're lazy

Inconsideration to the fact that phones will only become more invasive & intergrated into future generations... they hold all important information like bank details, current location, family etc. & more than half the world already owns one.

It would pay off to be knowledgable in the field sincr the person sitting next to you could be emptying your bank account & you wouldn't know until it was too late :/
Click to expand...
 
You must log in or register to reply here.
Back
Top Bottom