# GingerMaster

> Mediated Wiki article. Canonical URL: https://mediated.wiki/source/GingerMaster
> Markdown URL: https://mediated.wiki/source/GingerMaster.md
> Source: https://en.wikipedia.org/wiki/GingerMaster
> Source revision: 1314434127
> License: Creative Commons Attribution-ShareAlike 4.0 International (https://creativecommons.org/licenses/by-sa/4.0/)

{{Short description|Android platform based malware}}'''GingerMaster''' is [malware](/source/malware) that affects [Android operating system](/source/Android_(operating_system)) version 2.3. It was first detected in August 2011.<ref>{{cite web| url=https://www.csc.ncsu.edu/faculty/jiang/GingerMaster/ |title=First Android Malware Utilizing a Root Exploit on Android 2.3 (Gingerbread)|accessdate=2011-08-18 }}</ref>

==History==

GingerMaster is Android malware that contains a [root exploit](/source/Rooting_(Android_OS)) packaged within an infected app.<ref>{{cite web |url=https://nakedsecurity.sophos.com/2011/08/22/first-malware-using-android-gingerbreak-exploit/ |title=First malware using Android Gingerbreak root exploit |date=22 August 2011 |accessdate=2011-08-22 |archive-date=2011-11-26 |archive-url=https://web.archive.org/web/20111126013204/http://nakedsecurity.sophos.com/2011/08/22/first-malware-using-android-gingerbreak-exploit/ |url-status=dead }}</ref><ref>{{cite web | url=http://www.eweek.com/c/a/Security/Latest-Android-Malware-Infects-Gingerbread-via-Jailbreak-Exploit-298452 | title=Latest Android Malware Infects Gingerbread via Jailbreak Exploit | accessdate=2011-08-23 }}{{Dead link|date=June 2024 |bot=InternetArchiveBot |fix-attempted=yes }}</ref> GingerMaster's Root exploit is the "KillingInTheNameOfGingerBreakzegRush"<ref name=":0">{{Cite journal|last1=Lee|first1=Hwan-Taek|last2=Kim|first2=Dongjin|last3=Park|first3=Minkyu|last4=Cho|first4=Seong-je|date=2014-12-10|title=Protecting data on android platform against privilege escalation attack|url=http://dx.doi.org/10.1080/00207160.2014.986113|journal=International Journal of Computer Mathematics|volume=93|issue=2|pages=401–414|doi=10.1080/00207160.2014.986113|s2cid=39113435 |issn=0020-7160|url-access=subscription}}</ref>

==Process==

GingerMaster appears to be a normal application on the user's phone, but once the application is launched on an Android device, it acquires root privileges through GingerBreak on the device and then accesses sensitive data.<ref>{{cite web | url=http://www.tgdaily.com/mobility-features/58049-beware-the-android-gingermaster | title=Beware the Android Gingermaster | accessdate=2011-08-23 | archive-date=2015-10-18 | archive-url=https://web.archive.org/web/20151018211510/http://www.tgdaily.com/mobility-features/58049-beware-the-android-gingermaster | url-status=dead }}</ref><ref name=":0" /> Once GingerMaster has root access it will try to install a root shell for future malicious use.<ref name=":0" />

==Function==

GingerMaster steals data such as:

* [SIM card](/source/Subscriber_identity_module) number
* Phone number 
*
* [IMEI](/source/International_Mobile_Equipment_Identity) number
* IMSI number
* [Screen resolution](/source/Display_resolution) 
* Native time

==See also==
* [Brain Test](/source/Brain_Test)
* [Dendroid (Malware)](/source/Dendroid_(Malware))
* [Computer virus](/source/Computer_virus)
* [File binder](/source/File_binder)
* [Individual mobility](/source/Individual_mobility)
* [Malware](/source/Malware)
* [Trojan horse (computing)](/source/Trojan_horse_(computing))
* [Worm (computing)](/source/Worm_(computing))
* [Mobile operating system](/source/Mobile_operating_system)

==References==
{{Reflist}}

Category:Software distribution
Category:Android (operating system) malware
Category:Privilege escalation exploits
Category:Online advertising
Category:Mobile security
Category:Privacy

{{malware-stub}}

---
Adapted from the Wikipedia article [GingerMaster](https://en.wikipedia.org/wiki/GingerMaster) by Wikipedia contributors ([contributor history](https://en.wikipedia.org/wiki/GingerMaster?action=history)). Available under [Creative Commons Attribution-ShareAlike 4.0 International](https://creativecommons.org/licenses/by-sa/4.0/). Changes may have been made.
