Cardtrap.AK is a Symbian SIS file trojan that tries to damage some 3rd party applications and installs Windows malware to the memory card.


Disinfecting using F-Secure Mobile Security

  • Download F-Secure Mobile Anti-Virus from https://f-secure.mobiand activate the Anti-Virus
  • Scan the phone and remove any components of the malware
  • Reboot the phone to remove memory resident components
Find out more

Knowledge Base

Find the latest advice in our Community Knowledge Base.

User Guide

See the user guide for your product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details

Installation to the Phone

Cardtrap.AK tries to disable following 3rd party applications by installing several damaged files to the phone memory:

  • C:\system\apps\Antivirus\
  • C:\system\apps\Antivirus\AVserver.exe
  • C:\system\apps\Disinfect\
  • C:\system\apps\Disinfector\
  • C:\system\apps\FCommwarrior\
  • C:\system\apps\KLAntivirus\
  • C:\system\apps\MAV\
  • C:\system\apps\Mobilesecurity\
  • C:\system\apps\MobilesecurityAu\
  • E:\system\apps\ADOBEREADER\
  • E:\system\apps\BLACKLIST\
  • E:\system\apps\cabirfix\
  • E:\system\apps\ETICamcorder\
  • E:\system\apps\FExplorer\
  • E:\system\apps\file\
  • E:\system\apps\FSCaller\
  • E:\system\apps\Logoman\
  • E:\system\apps\Photoalbum\
  • E:\system\apps\PhotoEditor\
  • E:\system\apps\Quicksheet\
  • E:\system\apps\SettingsWizard\
  • E:\system\apps\Smartmovie\
  • E:\system\apps\systemexplorer\
  • E:\system\apps\ultramp3\
  • E:\system\recogs\flocknut.mdl
  • E:\system\recogs\fSkulls.mdl

Cardtrap.AK drops following Win32 malware to device memory card:

  • Worm.Win32.Mobler.b

Date Created: Mika Tolvanen, August 28, 2006

Date Last Modified: Mika Tolvanen, August 28, 2006