Technorati
Digg
Delicious
Reddit
StumbleUpon
Facebook
Yahoo
Twitter
Faves
Newsvine
- Discovered:
- January 27, 2012
- Updated:
- January 30, 2012 3:37:21 PM
- Type:
- Trojan
- Infection Length:
- Varies
Android.Opfake is a detection for Trojan horses on the Android platform that send SMS texts to premium-rate numbers.
Android package file
The Trojan may arrive as one of the following APK packages:
Package name: wap.syst.two
File names: installer.apk, new_opera.apk, skachat.apk
Name: Installer
Version: 1.0
Package name: com.some.opera
File names: Opera_Mini_6.apk
Name: Opera Mini
Version: 1.0
Package name: com.soft
File names: Opera_Mini_4_4.apk, Opera_Mini_5_1.apk, Opera_Mini_6_1_Android.apk, Opera_Mobile_11_5.apk
Name: Install
Version: 1.0
Android package file
The Trojan may arrive as one of the following APK packages:
Package name: wap.syst.two
File names: installer.apk, new_opera.apk, skachat.apk
Name: Installer
Version: 1.0
Package name: com.some.opera
File names: Opera_Mini_6.apk
Name: Opera Mini
Version: 1.0
Package name: com.soft
File names: Opera_Mini_4_4.apk, Opera_Mini_5_1.apk, Opera_Mini_6_1_Android.apk, Opera_Mobile_11_5.apk
Name: Install
Version: 1.0
Antivirus Protection Dates
- Initial Rapid Release version January 27, 2012 revision 002
- Latest Rapid Release version February 14, 2012 revision 039
- Initial Daily Certified version January 27, 2012 revision 001
- Latest Daily Certified version February 15, 2012 revision 004
- Initial Weekly Certified release date February 1, 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
- Wild Level: Low
- Number of Infections: 0 - 49
- Number of Sites: 0 - 2
- Geographical Distribution: Low
- Threat Containment: Easy
- Removal: Easy
Damage
- Damage Level: Medium
- Payload: Sends premium-rate SMS messages from the compromised device.
Distribution
- Distribution Level: Low
Writeup By: Asuka Yamamoto and Costin Ionescu
