Android users are being warned of the new sophisticated DroidKungFu malware that attempts to take control of the victim system.

Its main payload is it encrypts two known root exploits -- a udev exploit and a so-called rageagainstthecage exploit. Once the malware is executed, it decrypts and runs malicious code on the victim system.

Some of the latest analyses on this malware can be found in the following links:

http://www.csc.ncsu.edu/faculty/jiang/DroidKungFu.html
http://www.csc.ncsu.edu/faculty/jiang/DroidKungFu2/
http://www.virusbtn.com/news/2011/06_20.xml?rss
http://www.f-secure.com/weblog/archives/00002177.html
http://blog.fortinet.com/androiddroidkungfu-attacking-from-a-mobile-device/

The latest VirusTotal string (11/5/11): http://www.virustotal.com/file-scan/report.html?id=7513c6a11b88b87f528b88624d1b198b5bcc325864b328e32cc0d790b0bfc1c4-1320517043

(Has it obviously evaded many antivirus programs: YES!)


You may want to consider purchasing the PRO version of Malwarebytes' Anti-Malware to protect against these types of threats.