SymbOS/Fakee.A!tr - Released Mar 09, 2007 - Last Updated Jul 13, 2007
|
Alias/esSymbOS/Feak.A!tr, SYMBOS_FEAKS.A, SymbOS/Feakks.B trojan, SymbOS/Feak.B |
Detection Availability
|
Visible SymptomsSMS messages are sent to all existing contacts from the infected mobile phone. |
Detailed AnalysisThis malware may arrive as a downloaded file from a URL which is contained in an SMS message.
Upon execution, it drops the following files:
- !\system\apps\feakk.exe
- !\system\recogs\feakk.mdl
Both of them are detected as SymbOS/Fakee.A!tr by Fortinet.
Searches the list of contacts of the affected phone and then sends an SMS message to each of them. The SMS message is as follows:
hey check this link out
http://www.cs.{REMOVED}.edu/%7efeakk/feakk.zip
bye
|
|
Recommended ActionDelete all the virus files using a file manager program or an AV software for mobile devices. |
