1. /
  2. Security Response/
  3. Android.Golddream


Risk Level 1: Very Low

July 6, 2011
July 6, 2011 8:41:39 AM
Also Known As:
Infection Length:
5,978,987 bytes
Systems Affected:
Android.Golddream is a Trojan horse that steals information from Android devices.

Android package file
This Trojan disguises itself on certain marketplaces as game software, but it comes bundled with a Trojan.

The Trojan then creates a service with the following name:

Credit to Dr. Jiang of NCSU.edu for finding this threat.

Antivirus Protection Dates

  • Initial Rapid Release version July 6, 2011 revision 002
  • Latest Rapid Release version February 19, 2013 revision 016
  • Initial Daily Certified version July 6, 2011 revision 003
  • Latest Daily Certified version April 24, 2012 revision 002
  • Initial Weekly Certified release date July 6, 2011
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Medium
  • Payload: May download more files on to the compromised device.
  • Releases Confidential Info: Steals information from Android devices.


  • Distribution Level: Low
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Masaki Suenaga

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report