1. /
  2. Security Response/
  3. Android.Cellshark


November 16, 2011 11:09:14 AM
Cellshark Mobile Spy Monitor
Centralized Solutions LLC
Risk Impact:
Android package file
The application arrives as the following application package:

APK: csllc.CellShark.apk
Version: 1.98
Publisher: Centralized Solutions LLC
Marketplace name: Cellshark Mobile Spy Monitor

The application must be manually installed.

The application will create an entry with an icon depicting a folder and a cog wheel, in the Settings > Applications > Manage Applications menu.

However, this icon will not appear in the standard Applications menu.

When the application is being installed, it requests permissions to perform the following actions:

  • Check the phone's current state.
  • Read SMS messages on the device.
  • Monitor incoming SMS messages.
  • Read MMS messages on the device.
  • Monitor incoming MMS messages.
  • Open network connections.
  • Access information about networks.
  • Access location information, such as GPS information, Cell-ID, or WiFi.
  • Read contact data.
  • Delete packages.
  • Prevent processor from sleeping or screen from dimming.
  • Read or write to the system settings.

System monitoring
The application will then periodically upload the following information to a predetermined website:
  • Phone call records
  • Text messages
  • GPS coordinates
  • Contacts

An attacker can later log into the website and access the gathered information.
Summary| Technical Details| Removal

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report, Volume 17
Symantec DeepSight Screensaver