As the media and several tech companies already outlined a fake smartphone app is being used to remotely monitor pro-democracy protesters in Hong Kong. We came accross the corresponding malware via our APK Analyzer (
www.apk-analyzer.net):
A full analysis can be downloaded here:
The Joe Sandbox Mobile analysis is very nice and shows all spying and control payloads of the trojan. Rather then explaining all details we just add here some interesting report cuttings: