Ge0rG ➡️ Easter-H-Egg

So I wanted to see if the 19€ smartwatch companion app "Colmi Fit" phones home.

I couldn't resist it after @Edent ~recommended~ tested it in https://shkspr.mobi/blog/2025/08/i-bought-a-16-smartwatch-just-because-it-used-usb-c/#app

The app itself seems fine (I had to apk-mitm it), but I got an Android.BadBox2 malware report from #Vodafone two days later! Turns out, my ProxyDroid test phone had an infected APK of "Sensor Box" (imoblife.androidsensorbox) on it!

Thanks @certbund and @shadowserver for your excellent work!

#Android #BadBox2 #Malware

Aug 14, 2025 at 4:40pmWeb
Show threadChristophAug 14, 2025
@ge0rg do you have any idea how you got infected? Was it actually from the Colmi Fit app or something else?
Show threadGe0rG ➡️ Easter-H-EggAug 14, 2025
@yonk
No, it's absolutely unrelated. I installed that app a year or longer ago, and I got it from a shady APK mirror.