Mobilfunk-FAQ - Einzelnen Beitrag anzeigen

Hangman · 23.07.2007, 18:48

Risiko: sehr gering
Typ: Trojanisches Pferd
entdeckt am: 06.04.2006
auch bekannt als: keine Angabe

Information:

SymbOS.Cdropper.N is a Trojan horse that runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones. It drops a copy of SymbOS.Cabir to the compromised device.

SymbOS.Cdropper.N reportedly arrives as EzBoot.sis. If a user opens this file, the device Installer will display a dialog to warn the user that the application may be coming from an untrusted source and may cause potential problems.

technische Details:

When SymbOS.Cdropper.N is executed, it performs the following functions:
Displays the following message prompting the user to install the threat:

Install
EzBoot

Drops the following files:

[DRIVE LETTER]:\system\apps\EzBoot\EZBoot.app (A copy of SymbOS.Cabir)
[DRIVE LETTER]:\system\apps\EzBoot\EZBoot.rsc
[DRIVE LETTER]:\system\apps\EzBoot\ezboot.mdl (A copy of SymbOS.Cabir)
[DRIVE LETTER]:\system\programs\EZBoot\EZBootsrv.exe (A copy of SymbOS.Cabir)
[DRIVE LETTER]:\system\recogs\ezrecog.mdl (A copy of SymbOS.Cabir.V)

The following file is also created by the device Installer, not the Trojan itself:

\system\install\EzBoot.sis

weitere Informationen...

23.07.2007, 18:48	#13 (Permalink)
Hangman Administrator Avatare sind nur für MFF-Mitglieder sichtbar! Bike Mania Champion! Registriert seit: 17.04.2006 Ort: Erfurt Beiträge: 3.387 Downloads: 336 Uploads: 317 Abgegebene Danke: 43 Erhielt 456 Danke für 245 Beiträge	[SymbianOS] SymbOS.Cdropper.N Risiko: sehr gering Typ: Trojanisches Pferd entdeckt am: 06.04.2006 auch bekannt als: keine Angabe Information: SymbOS.Cdropper.N is a Trojan horse that runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones. It drops a copy of SymbOS.Cabir to the compromised device. SymbOS.Cdropper.N reportedly arrives as EzBoot.sis. If a user opens this file, the device Installer will display a dialog to warn the user that the application may be coming from an untrusted source and may cause potential problems. technische Details: When SymbOS.Cdropper.N is executed, it performs the following functions: Displays the following message prompting the user to install the threat: Install EzBoot Drops the following files: [DRIVE LETTER]:\system\apps\EzBoot\EZBoot.app (A copy of SymbOS.Cabir) [DRIVE LETTER]:\system\apps\EzBoot\EZBoot.rsc [DRIVE LETTER]:\system\apps\EzBoot\ezboot.mdl (A copy of SymbOS.Cabir) [DRIVE LETTER]:\system\programs\EZBoot\EZBootsrv.exe (A copy of SymbOS.Cabir) [DRIVE LETTER]:\system\recogs\ezrecog.mdl (A copy of SymbOS.Cabir.V) The following file is also created by the device Installer, not the Trojan itself: \system\install\EzBoot.sis weitere Informationen... __________________ lesen - denken - posten