high
Summary
Summary
Action- More Information
| How it spreads |
|
|---|---|
| Protection available since | 30 November 2004 14:31:33 (GMT) |
| Detected by | All Sophos products |
Free virus scan
- Free virus, spyware, and adware scan
- Test your existing anti-virus protection
- Find threats your anti-virus missed
Action
- Summary
- Action
- More Information
Please follow the instructions for removing Trojans.
More Information
Troj/Skulls-B is a Trojan developed for mobile phones based on the Nokia Series 60 specifications of the Symbian operating system. The Trojan has reportedly been posted on websites containing shareware applications for Symbian phones as an ICONS.SIS installation file.
When the SIS installation file is installed it creates a number of files on the C: drive of the phone (RAM). The files are installed with the same path as the ROM system executables located in drive Z:. Since the files installed with the same path on drive C: have precedence over files in Z:, all the system application files are effectively replaced by the ones installed by the Trojan SIS file.
Applications for Symbian consist of an application file with the extension APP, but may also include an Application Information file with the extension AIF. The AIF file contains icons for the application and the pointer to the application file.
Troj/Skulls-B creates new AIF files containing icons that do not point to an actual application. This disables all smartphone features of the phone, although the phone can be still used to make calls.
The SIS installation file contains the following files:
./System/CARIBESECURITYMANAGER/CAMTIMER.sis
./System/CARIBESECURITYMANAGER/caribe.app
./System/CARIBESECURITYMANAGER/caribe.rsc
./System/Apps/WALLETAVOTA/WALLETAVOTA.AIF
./System/Apps/WALLETAVOTA/WALLETAVOTA.APP
./System/Apps/WALLETAVMGMT/WALLETAVMGMT.AIF
./System/Apps/WALLETAVMGMT/WALLETAVMGMT.APP
./System/Apps/Voicerecorder/Voicerecorder.aif
./System/Apps/Voicerecorder/Voicerecorder.app
./System/Apps/Vm/Vm.aif
./System/Apps/Vm/Vm.app
./System/Apps/VCommand/VCommand.aif
./System/Apps/VCommand/VCommand.app
./System/Apps/Ussd/Ussd.aif
./System/Apps/Ussd/Ussd.app
./System/Apps/ToDo/ToDo.aif
./System/Apps/ToDo/ToDo.app
./System/Apps/SysAp/SysAp.aif
./System/Apps/SysAp/SysAp.app
./System/Apps/Startup/Startup.aif
./System/Apps/Startup/Startup.app
./System/Apps/Speeddial/Speeddial.aif
./System/Apps/Speeddial/Speeddial.app
./System/Apps/SmsViewer/SmsViewer.aif
./System/Apps/SmsViewer/SmsViewer.app
./System/Apps/SmsEditor/SmsEditor.aif
./System/Apps/SmsEditor/SmsEditor.app
./System/Apps/SimDirectory/SimDirectory.aif
./System/Apps/SimDirectory/SimDirectory.app
./System/Apps/Sdn/Sdn.aif
./System/Apps/Sdn/Sdn.app
./System/Apps/ScreenSaver/ScreenSaver.aif
./System/Apps/ScreenSaver/ScreenSaver.app
./System/Apps/SchemeApp/SchemeApp.aif
./System/Apps/SchemeApp/SchemeApp.app
./System/Apps/Satui/Satui.aif
./System/Apps/Satui/Satui.app
./System/Apps/PushViewer/PushViewer.aif
./System/Apps/PushViewer/PushViewer.app
./System/Apps/PSLN/PSLN.aif
./System/Apps/PSLN/PSLN.app
./System/Apps/ProvisioningCx/ProvisioningCx.aif
./System/Apps/ProvisioningCx/ProvisioningCx.app
./System/Apps/ProfileApp/profileapp.aif
./System/Apps/ProfileApp/profileapp.app
./System/Apps/PRESENCE/PRESENCE.AIF
./System/Apps/PRESENCE/PRESENCE.APP
./System/Apps/Pinboard/Pinboard.aif
./System/Apps/Pinboard/Pinboard.app
./System/Apps/Phonebook/Phonebook.aif
./System/Apps/Phonebook/Phonebook.app
./System/Apps/Phone/Phone.aif
./System/Apps/Phone/Phone.app
./System/Apps/NSmlDSSync/NSmlDSSync.aif
./System/Apps/NSmlDSSync/NSmlDSSync.app
./System/Apps/NSmlDMSync/NSmlDMSync.aif
./System/Apps/NSmlDMSync/NSmlDMSync.app
./System/Apps/NpdViewer/NpdViewer.aif
./System/Apps/NpdViewer/NpdViewer.app
./System/Apps/Notepad/notepad.aif
./System/Apps/Notepad/Notepad.app
./System/Apps/MusicPlayer/MusicPlayer.aif
./System/Apps/MusicPlayer/MusicPlayer.app
./System/Apps/MsgMailViewer/MsgMailViewer.aif
./System/Apps/MsgMailViewer/MsgMailViewer.app
./System/Apps/MsgMailEditor/MsgMailEditor.aif
./System/Apps/MsgMailEditor/MsgMailEditor.app
./System/Apps/MmsViewer/MmsViewer.aif
./System/Apps/MmsViewer/MmsViewer.app
./System/Apps/MmsEditor/MmsEditor.aif
./System/Apps/MmsEditor/MmsEditor.app
./System/Apps/MMM/Mmm.aif
./System/Apps/MMM/MMM.app
./System/Apps/mmcapp/mmcapp.aif
./System/Apps/mmcapp/mmcapp.app
./System/Apps/Menu/Menu.aif
./System/Apps/Menu/Menu.app
./System/Apps/MediaSettings/MediaSettings.aif
./System/Apps/MediaSettings/MediaSettings.app
./System/Apps/MediaPlayer/MediaPlayer.aif
./System/Apps/MediaPlayer/MediaPlayer.app
./System/Apps/MediaGallery/MediaGallery.aif
./System/Apps/MediaGallery/MediaGallery.app
./System/Apps/mce/mce.aif
./System/Apps/mce/mce.app
./System/Apps/Logs/Logs.aif
./System/Apps/Logs/Logs.app
./System/Apps/location/location.aif
./System/Apps/location/location.app
./System/Apps/ImageViewer/ImageViewer.aif
./System/Apps/ImageViewer/ImageViewer.app
./System/Apps/GS/GS.aif
./System/Apps/GS/gs.app
./System/Apps/FileManager/FileManager.aif
./System/Apps/FileManager/FileManager.app
./System/Apps/DdViewer/DdViewer.aif
./System/Apps/DdViewer/DdViewer.app
./System/Apps/cshelp/cshelp.aif
./System/Apps/cshelp/cshelp.app
./System/Apps/Converter/Converter.aif
./System/Apps/Converter/converter.app
./System/Apps/ConnectionMonitorUi/ConnectionMonitorUi.aif
./System/Apps/ConnectionMonitorUi/ConnectionMonitorUi.app
./System/Apps/CodViewer/CodViewer.aif
./System/Apps/CodViewer/CodViewer.app
./System/Apps/ClockApp/ClockApp.aif
./System/Apps/ClockApp/ClockApp.app
./System/Apps/Chat/Chat.aif
./System/Apps/Chat/Chat.app
./System/Apps/CERTSAVER/CERTSAVER.AIF
./System/Apps/CERTSAVER/CERTSAVER.APP
./System/Apps/CbsUiApp/cbsuiapp.aif
./System/Apps/CbsUiApp/CbsUiApp.app
./System/Apps/caribe/caribe.app
./System/Apps/caribe/caribe.rsc
./System/Apps/caribe/flo.mdl
./System/Apps/CamTimer/camtimer.app
./System/Apps/CamTimer/camtimer.rsc
./System/Apps/Camcorder/Camcorder.aif
./System/Apps/Camcorder/Camcorder.app
./System/Apps/Calendar/Calendar.aif
./System/Apps/Calendar/Calendar.app
./System/Apps/Calcsoft/Calcsoft.aif
./System/Apps/Calcsoft/Calcsoft.app
./System/Apps/bva/bva.aif
./System/Apps/bva/bva.app
./System/Apps/BtUi/BtUi.aif
./System/Apps/BtUi/BtUi.app
./System/Apps/Browser/Browser.aif
./System/Apps/Browser/Browser.app
./System/Apps/Autolock/Autolock.aif
./System/Apps/Autolock/Autolock.app
./System/Apps/AppMngr/AppMngr.aif
./System/Apps/AppMngr/Appmngr.app
./System/Apps/AppInst/Appinst.aif
./System/Apps/AppInst/Appinst.app
./System/Apps/About/About.aif
./System/Apps/About/About.app
Troj/Skulls-B attempts to install Symb/Cabir-B to the phone.
|
