Norton.com > Viruses & Risks > Android.Droidsheep

Android.Droidsheep

Updated:
March 10, 2014 3:39:20 PM
Name:
DroidSniff
Risk Impact:
Low
Systems Affected:
Android

Behavior

Android.Droidsheep is a hacktool for Android devices that hijacks social networking accounts on compromised devices.

Android package file
The Trojan may arrive as a package with the following characteristics:

Package name: com.evozi.droidsniff
Name: DroidSniff

Permissions
When the Trojan is being installed, it requests permissions to perform the following actions:
  • Prevent processor from sleeping or screen from dimming
  • Allow an application to modify the Gmail app
  • Access information about the WiFi state
  • Open network connections

Installation
Once installed, the application will display an icon with part of the Android logo at the top and two bones at the bottom, all in gray.

Antivirus Protection Dates

  • Initial Rapid Release version March 1, 2013
  • Latest Rapid Release version March 1, 2013
  • Initial Daily Certified version pending
  • Latest Daily Certified version pending
  • Initial Weekly Certified release date March 6, 2013
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Mario Ballano

Search Threats

Search by name

Example: W32.Beagle.AG@mm