Once Walkinwat is downloaded, a dialogue box appears on the user’s phone that, according to Symantec, “gives the appearance that the app is in the process of being compromised or cracked, when, in fact, the app is gathering and attempting to send back sensitive data (name, phone number, IMEI information, etc.) to an external server.”
This is far from the first instance of a corrupted Android app that harvests user data; in early March, a rogue piece of software called DroidDream was found in 58 apps, which were downloaded more than 200,000 times before being removed from the Android App Market.
But Walkinwat adds a personal twist to the typical smartphone scam. It seems whoever orchestrated the bad app to steal your data has an anti-piracy agenda of his own.
While it’s installing, the Wakinwat app sends out a text message to everyone in the victim’s contact list that reads: “Hey, just downloaded a pirated App off the Internet, Walk and Text for Android. Im stupid and cheap, it costed only 1 buck. Don’t steal like I did!”
A follow-up message reads, “We really hope you learned something from this. Check your phone bill;) Oh and don’t forget to buy the App from the Market.”
Symantec said this is the first case in which a corrupted mobile application was used to scold people for piracy.