virus logo Mobile Virus

Android/NickiSpy.C!tr.spy

description-logoAnalysis

Android/NickiSpy.C!tr.spy is a variant of Android/NickiSpy.A!tr.spy. The differences with variant A are the following:

  • it displays an icon in the Application Launcher, but the malware is named "Android System Message", a name that will probably have the victim believe this is a genuine system application.
  • the attacker may view the results from a website front-end on [REMOVED]mo.com
  • the malware has a settings panel with several options


.

recommended-action-logoRecommended Action

    FortiGate Systems
  • Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
    FortiClient Systems
  • Quarantine/delete files that are detected and replace infected files with clean backup copies.

Telemetry logoTelemetry

Detection Availability

FortiClient
Extreme
FortiMail
Extreme
FortiSandbox
Extreme
FortiWeb
Extreme
Web Application Firewall
Extreme
FortiIsolator
Extreme
FortiDeceptor
Extreme
FortiEDR

Version Updates

Date Version Detail
2021-04-08 85.00304
2021-02-10 83.93700
2021-01-27 83.60100
2020-04-02 76.41400
2020-02-05 75.04800
2020-01-25 74.77900
ID 2971288
Released Aug 18, 2011
Description
Updated		 Sep 22, 2011
Aliases .
Platform Profile Android platform
Profile Type Trojan Spy (tr.spy)