1. /
  2. Security Response/
  3. Android.Fakelemon

Android.Fakelemon

Risk Level 1: Very Low

Discovered:
December 4, 2012
Updated:
December 6, 2012 11:05:49 AM
Type:
Trojan
Systems Affected:
Android
Android.Fakelemon is a Trojan horse for Android devices that blocks certain SMS messages and may subscribe to services without the user's consent.

Android package file
The Trojan may arrive as a package with the following characteristics:

Package name: com.android.nmh.reader
Version: 1.17.10036


Installation
Once installed, the application will display an icon with Chinese characters.


Antivirus Protection Dates

  • Initial Rapid Release version December 4, 2012 revision 004
  • Latest Rapid Release version December 4, 2012 revision 004
  • Initial Daily Certified version December 4, 2012 revision 008
  • Latest Daily Certified version December 4, 2012 revision 008
  • Initial Weekly Certified release date December 5, 2012
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Medium
  • Releases Confidential Info: Sends SMS messages to a remote location.

Distribution

  • Distribution Level: Low
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Daniel Xiang

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report