|
|
|
|
|
|
by DesktopECHO
1252 days ago
|
|
|
Thanks for the guidance here. Where I'm really stuck is when tcpdump tells me about the presence of the offending traffic and correlating process. In this case, it's the Android "system_server" process and I'm not sure how to find the hook into it that downloads the malware. In hindsight I should have made this an Ask HN post... |
|
|