24 February 2016
Infection Length:
Risk Impact:
Systems Affected:


SecurityRisk.Zerghelp is a detection for an iOS application that can bypass security restrictions on the device.

Antivirus Protection Dates

  • Initial Rapid Release version 22 February 2016
  • Latest Rapid Release version 23 April 2018 revision 022
  • Initial Daily Certified version 22 February 2016
  • Latest Daily Certified version 23 April 2018 revision 036
  • Initial Weekly Certified release date 24 February 2016
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
When the program is executed, it connects to the following remote location:

This website displays applications that are reportedly not approved for distribution on Apple's official App Store.

If a user chooses to obtain an application from this site, then the program downloads and installs the selected application by signing a certificate. The program obtains this certificate in an inappropriate way, directly from Apple servers.

When the program is executed outside of China, it may disguise itself as a nonmalicious app in order to evade code reviews on the App Store.