Trend Micro discovered new malware spread in third-party app stores on Android in China and used a new technique to receive commands.
The malicious program disguised as an e-book reader "Wanke apartment" and downloaded and disseminated through a third-party app store on Android.
Before installation, it requires the user to access the network, personal information, telephone and system tools.
If these permits are approved, it will be able to control the phone, including wake up the phone, read log files, contact information, receive and send SMS.
The malicious program has two hard-coded Command Control servers to receive commands or download more malicious programs.
One of the command control servers is the content encryption blog.
This is the first time that Android malicious programs use blogs as communication tools.
Security researchers also found that the new version of malicious programs can end the work of mobile phone security software such as 360, QQ Mobile Phone Manager and Kingsoft.