Home / malwarePDF  

Trojan:SymbOS/Cardtrap.AK


First posted on 21 June 2010.
Source: SecurityHome

Aliases :

There are no other names known for Trojan:SymbOS/Cardtrap.AK.

Explanation :

A trojan, or trojan horse, is a seemingly legitimate program which secretly performs other, usually malicious, functions. It is usually user-initiated and does not replicate.

Additional DetailsTrojan:SymbOS/Cardtrap.AK is a Symbian SIS file trojan that tries to damage some third party applications and installs Windows malware to the memory card.

Installation


Cardtrap.AK tries to disable the following third party applications by installing several damaged files to the phone memory:

€ C:\system\apps\Antivirus\Antivirus.app € C:\system\apps\Antivirus\AVserver.exe € C:\system\apps\Disinfect\Disinfect.app € C:\system\apps\Disinfector\Disinfector.app € C:\system\apps\FCommwarrior\FCommwarrior.app € C:\system\apps\KLAntivirus\KLAntivirus.app € C:\system\apps\MAV\MAV.app € C:\system\apps\Mobilesecurity\Mobilesecurity.app € C:\system\apps\MobilesecurityAu\MobilesecurityAu.app € E:\system\apps\ADOBEREADER\ADOBEREADER.app € E:\system\apps\BLACKLIST\BLACKLIST.app € E:\system\apps\cabirfix\cabirfix.app € E:\system\apps\ETICamcorder\ETICamcorder.app € E:\system\apps\FExplorer\FExplorer.app € E:\system\apps\file\file.app € E:\system\apps\FSCaller\FSCaller.app € E:\system\apps\Logoman\Logoman.app € E:\system\apps\Photoalbum\Photoalbum.app € E:\system\apps\PhotoEditor\PhotoEditor.app € E:\system\apps\Quicksheet\Quicksheet.app € E:\system\apps\SettingsWizard\SettingsWizard.app € E:\system\apps\Smartmovie\Smartmovie.app € E:\system\apps\systemexplorer\systemexplorer.app € E:\system\apps\ultramp3\ultramp3.app € E:\system\recogs\flocknut.mdl € E:\system\recogs\fSkulls.mdl
Activity

In addition to disabling applications, Cardtrap.AK drops Worm:W32/Mobler.B to the device's memory card.DetectionF-Secure Mobile Anti-Virus for Symbian detects this malware starting from the update build number 106.

Last update 21 June 2010

 

TOP