1. /
  2. Security Response/
  3. Android.Nandrobox


Risk Level 1: Very Low

2 July 2012
19 July 2012 7:16:57 AM
Systems Affected:
Android.Nandrobox is a Trojan horse for Android devices that steals information from the compromised device. It also deletes certain SMS messages from the device.

Android package file
The Trojan may arrive as a package with the following name:

APK: com.androidbox.ysygbnet8
Version: 1.0

Once installed, the application displays the following icon on the device:

Antivirus Protection Dates

  • Initial Rapid Release version pending
  • Latest Rapid Release version 3 July 2012 revision 006
  • Initial Daily Certified version 2 July 2012 revision 018
  • Latest Daily Certified version 3 July 2012 revision 017
  • Initial Weekly Certified release date 4 July 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Daniel Xiang
2015 Internet Security Threat Report, Volume 20