AnalysisAndroid/FakeTimer.A!tr is a trojan targetting Android mobile phones.
It sends the device's information to an HTTP server.
The trojan installs a service called KitchenTimerService.
The service firsts contacts an HTTP server from which it will receive a cookie containing a unique identifier.
The service will then retrieve the following information:
- Device IMEI
- Subscriber ID
- Phone number
- Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.
- Quarantine/delete files that are detected and replace infected files with clean backup copies.