Mobilfunk-FAQ - Einzelnen Beitrag anzeigen

Hangman · 26.06.2007, 00:04

Risiko: sehr gering
Typ: Trojaner
entdeckt am: 17. Mai 2006
auch bekannt als: keine Angabe

Information:

SymbOS.Bootton.F is a Trojan horse that installs a component into the compomised device. The component runs automatically after installation and when the compromised device restarts, which causes the restart to fail. The Trojan runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones.

The Trojan reportedly arrives as Rebooter by WarriorMarriory.sis. When the user clicks on the .sis file, the phone installer displays a dialog box to warn the user that the application may be coming from an untrusted source and may cause potential problems.

technische Details:

When SymbOS.Bootton.F is executed, it performs the following actions:
Displays the following message:

Rebooter by [Removed]

Drops the following files on the compromised device:

C:\System\recogs\Reboot.mdl
C:\System\Reboter\Rebootload!.exe (a copy of SymbOS.Skulls)

Restarts the compromised device.

Note: Due to the presence of the corrupted components, the device is unable to restart.

The following file is created by the Installer, not the threat:

\System\install\Rebooter by WarriorMarrior.sis

weitere Informationen...

26.06.2007, 00:04	#2 (Permalink)
Hangman Administrator Avatare sind nur für MFF-Mitglieder sichtbar! Bike Mania Champion! Registriert seit: 17.04.2006 Ort: Erfurt Beiträge: 3.360 Downloads: 336 Uploads: 315 Abgegebene Danke: 43 Erhielt 455 Danke für 244 Beiträge	[SymbianOS] SymbOS.Bootton.F Risiko: sehr gering Typ: Trojaner entdeckt am: 17. Mai 2006 auch bekannt als: keine Angabe Information: SymbOS.Bootton.F is a Trojan horse that installs a component into the compomised device. The component runs automatically after installation and when the compromised device restarts, which causes the restart to fail. The Trojan runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones. The Trojan reportedly arrives as Rebooter by WarriorMarriory.sis. When the user clicks on the .sis file, the phone installer displays a dialog box to warn the user that the application may be coming from an untrusted source and may cause potential problems. technische Details: When SymbOS.Bootton.F is executed, it performs the following actions: Displays the following message: Rebooter by [Removed] Drops the following files on the compromised device: C:\System\recogs\Reboot.mdl C:\System\Reboter\Rebootload!.exe (a copy of SymbOS.Skulls) Restarts the compromised device. Note: Due to the presence of the corrupted components, the device is unable to restart. The following file is created by the Installer, not the threat: \System\install\Rebooter by WarriorMarrior.sis weitere Informationen... __________________ lesen - denken - posten