1. Skip to navigation
  2. Skip to content
  3. Skip to secondary-content

Where You Are

  1. Home
  2. Security
  3. Security Lab
  4. Latest Threats
  5. Virus Descriptions
  6. Cardtrap.AK

Cardtrap.AK

Name : Cardtrap.AK
Category:Trojan
Type:Trojan
Platform:SymbOS
Date of Discovery:August 27, 2006

Summary

Cardtrap.AK is a Symbian SIS file trojan that tries to damage some 3rd party applications and installs Windows malware to the memory card.

Disinfection

Disinfecting using F-Secure Mobile Anti-Virus
  • Download F-Secure Mobile Anti-Virus from http://f-secure.mobi
and activate the Anti-Virus
  • Scan the phone and remove any components of the malware
  • Reboot the phone to remove memory resident components

Additional Details

Installation to the Phone

Cardtrap.AK tries to disable following 3rd party applications by installing several damaged files to the phone memory:

  • C:\system\apps\Antivirus\Antivirus.app
  • C:\system\apps\Antivirus\AVserver.exe
  • C:\system\apps\Disinfect\Disinfect.app
  • C:\system\apps\Disinfector\Disinfector.app
  • C:\system\apps\FCommwarrior\FCommwarrior.app
  • C:\system\apps\KLAntivirus\KLAntivirus.app
  • C:\system\apps\MAV\MAV.app
  • C:\system\apps\Mobilesecurity\Mobilesecurity.app
  • C:\system\apps\MobilesecurityAu\MobilesecurityAu.app
  • E:\system\apps\ADOBEREADER\ADOBEREADER.app
  • E:\system\apps\BLACKLIST\BLACKLIST.app
  • E:\system\apps\cabirfix\cabirfix.app
  • E:\system\apps\ETICamcorder\ETICamcorder.app
  • E:\system\apps\FExplorer\FExplorer.app
  • E:\system\apps\file\file.app
  • E:\system\apps\FSCaller\FSCaller.app
  • E:\system\apps\Logoman\Logoman.app
  • E:\system\apps\Photoalbum\Photoalbum.app
  • E:\system\apps\PhotoEditor\PhotoEditor.app
  • E:\system\apps\Quicksheet\Quicksheet.app
  • E:\system\apps\SettingsWizard\SettingsWizard.app
  • E:\system\apps\Smartmovie\Smartmovie.app
  • E:\system\apps\systemexplorer\systemexplorer.app
  • E:\system\apps\ultramp3\ultramp3.app
  • E:\system\recogs\flocknut.mdl
  • E:\system\recogs\fSkulls.mdl


Cardtrap.AK drops following Win32 malware to device memory card:

  • Worm.Win32.Mobler.b

Detection

F-Secure Mobile Anti-Virus for Symbian detects this malware starting from the update build number 106.