Security researcher Nikolaos Chrysaidos from anti-virus maker Avast who discovered the OmniRAT and calls it aRemote Administration Tool.
In hisblog post, Chrysaidos describes how he believes hackers have infected Androids with OmniRAT after sending an SMS.
The OmniRAT spreads through phishing which takes the victim to a website laden with the installation file of OmniRAT.
A German Android user explained on the Techboard forum on how he was lured into a website with OmniRAT.
Once the icon is opened by the victim, mms-einst8923.apk extracts OmniRat, which is encoded within the mms-einst8923.apk.
In the example described on Techboard-online, a customized version of OmniRat is extracted.
The OmniRAT cannot be uninstalled once it is installed on the Android smartphones.
Chrysaidos says that Android users should undertake following steps to protect themselves from OmniRAT.
source: www.techworm.net
