McAfee is flagging activate.apk (V1.0.16) as a High threat risk.
Type: non-removable system app
Package name: com.android.tbks
Detection name: Artemis!4452d3ed295e
Phone Info: Alcatel A30 - Model 5046S
Android Version 7.0
Android Security Patch Level: Sept 1, 2017
Baseband version: JO.2.0.c1-00150-8909_GEN_PACK-1
Kernal version: 3.10.49-gcb98184 android-bld@WS229 #1 Wed Aug 23 18:04:32 CST 2017
Build number: vEBB2
I've seen a number of threads about false positives for Artemis! How do I determine if this is an actual threat or not? Where do I provide additional information to McAfee to investigate?
Thanks,
Coleen
Solved! Go to Solution.
I updated virus definitions (version shows 4.4.6.67.1038).
Performed a scan (which again comes back as no threats found). But, when I close that screen and go back to the McAfee main screen, it still shows the Red We found 1 threat as shown above. I didn't know how to remove the warning if it was old. So I uninstalled & reinstalled McAfee Mobile Security. Set it all up again and re-ran the scan. Now the warning is gone.
So you can consider this closed. If it reappears, I'll let you know.
Thanks,
Coleen
Follow me and message me the link to the apk file and I will escalate it to the mobile malware team
Can you help me with where I'd find the .apk file? The phone is not rooted and I don't know how to show android system files. (I did enable developer mode & enabled USB debugging).
I attached the phone to my computer and looked under Internal shared storage > Android - only thing I see is a text file under Android > Data > com.android.tbks
I searched for activate.apk under internal shared storage and I'm not finding it.
Thanks,
Coleen
I have escalated your issue to a Tier 3 Technical Engineer from the Mobile Malware Research Team. I am awaiting a response back and will update you immediately.
All the Best,
Cliff
Moderator
Consumer Products
Thanks CD was waiting for a file link but mobile app links beyond me.
Hi Coleen,
Just received this correspondence from the Malware Research Team,
Hi Cliff,
We need to collect logs if the customer cannot provide the apk installer.
Steps to generate logs
1. Open Mobile Security on the customer's device.
2. Ask the customer to tap the top-bar 10 times with-in a 20-second span to start logging activity.
3. Replicate the problem.
4. Ask the customer to tap the top-bar 10 times to stop the logging process.
5. Please provide the time and date logs generated.
6. Provide McAfee email address and Device Hardware ID/IMEI
Thank you,
Dilly
I don't know how to "replicate" the problem as it just says it was found during a security scan.
I did activate the log, run a scan - which comes back as no threats found:
But when you close that window it still shows We found 1 threat as shown here:
When I click on the Review now option it show this:
When I click on the Activate.apk item it shows this:
Log was generated 12/5/17 approximately 10:15pm Mountain Time Zone (USA)
McAfee email address coleen.pub at sudsol.com (replace at with @ sign)
Device IMEI is 355068080130279
Coleen
I will pass this info back to the Engineer.
Thank you,
Cliff
Hi Colleen,
Dilly just informed me that your detection has been cleared. Please follow her instructions.
Hi Cliff,
The application has been marked clear.
Let the customer update virus def version and do scan again.
Thank you for your assistance.
Regards,
Dilly
I updated virus definitions (version shows 4.4.6.67.1038).
Performed a scan (which again comes back as no threats found). But, when I close that screen and go back to the McAfee main screen, it still shows the Red We found 1 threat as shown above. I didn't know how to remove the warning if it was old. So I uninstalled & reinstalled McAfee Mobile Security. Set it all up again and re-ran the scan. Now the warning is gone.
So you can consider this closed. If it reappears, I'll let you know.
Thanks,
Coleen
New to the forums or need help finding your way around the forums? There's a whole hub of community resources to help you.
Thousands of customers use the McAfee Community for peer-to-peer and expert product support. Enjoy these benefits with a free membership: