Contact Us
SECURITY BLOG SECURITY DASHBOARD PARTNERS PRODUCTS JOBS SERVICES COMPANY HOME
 
Security Dashboard | US-CERTs | SecurityFocus | Advisories | Exploits | Threats | Vulnerabilities | Risks
FindAndCall

Summary

Updated: July 6, 2012 2:55:00 AM
Also Known As: Trojan.AndroidOS.Fidall.a [Kaspersky]
Type: Potentially Unwanted App
Infection Length: Varies
Risk Impact: Low
Systems Affected: Android

Behavior

FindAndCall is a potentially unwanted application that uploads an Android device's address book contents to a remote server.

Antivirus Protection Dates

  • Initial Rapid Release version July 5, 2012 revision 017
  • Latest Rapid Release version July 5, 2012 revision 017
  • Initial Daily Certified version July 5, 2012 revision 018
  • Latest Daily Certified version July 5, 2012 revision 018
  • Initial Weekly Certified release date July 11, 2012

Technical Details

Updated: July 6, 2012 2:55:00 AM
Also Known As: Trojan.AndroidOS.Fidall.a [Kaspersky]
Type: Potentially Unwanted App
Infection Length: Varies
Risk Impact: Low
Systems Affected: Android
Behavior
The application must be manually installed.

The application uploads an Android device's address book contents to the following location:
[http://]abonent.findandcall.com/profile/phon[REMOVED]


Permissions
When the application is being installed, it requests permissions to perform the following actions:
  • Read the user's contacts data
  • Open network connections
  • Check the phone's current state
  • Access location information, such as GPS information
  • Access location information, such as Cell-ID or WiFi
  • Write to external storage device
  • Initiate a phone call without using the Phone UI or requiring confirmation from the user
  • Read SMS messages on the device
Writeup By: Jeet Morparia

Removal

Updated: July 6, 2012 2:55:00 AM
Also Known As: Trojan.AndroidOS.Fidall.a [Kaspersky]
Type: Potentially Unwanted App
Infection Length: Varies
Risk Impact: Low
Systems Affected: Android
You may have arrived at this page either because you have been alerted by your Symantec product about this risk, or you are concerned that your device has been affected by this risk.


Install Norton Mobile Security
If you do not already have Norton Mobile Security installed on your device, please download the product from the Android marketplace.

Alternatively, you can navigate to the norton.mobi website from your device and download the product from there by completing the following steps:
  1. Select the 90-Day free download.
  2. Click on the Android icon to begin downloading the product.
  3. Click on Install in order to accept the permissions that are being requested by the program.
  4. Next, click Open and then Agree & Launch.

Note: The first time the product runs, you will be required to enter a code that is displayed on the screen in order to activate the product. Enter the provided code and press Submit.


Run a full system scan
Run a full system scan using Norton Mobile Security to remove this risk from the device. To do this, please perform the following actions:
  1. Navigate to the Anti-Malware tab.
  2. Click Scan Now.


Manual removal
To remove this risk manually, please perform the following actions:
  1. Open the Google Android Menu.
  2. Go to the Settings icon and select Applications.
  3. Next, click Manage.
  4. Select the application and click the Uninstall button.
Writeup By: Jeet Morparia

Contact Us

Security Penetration Testing

Security Questions

Security Dashboard

Emagined Security Blog featuring Dr. Eugene Schultz
Site Updated May 18, 2013
©2000-2013 Emagined Security
All Rights Reserved

Secure Web Programming
by Vizual Services