symbos/cabir.d!worm - Released Aug 14, 2006

Alias/es Worm.SymbOS.Cabir.d;SymbOS.Doomboot.K;SymbOS/Cabir.A worm;SymbOS/Appdisabler.G
Visible Symptoms some tools fail to run
Detailed Analysis symbos/cabir.d!worm - 06-08-14 General Info: This threat has a file size: 99411 More Info: 1.Copy related files to following places: !:\system\recogs\flo.mdl !:\system\install\comcoder.SIS !:\system\install\autoexecdaemon.SIS !:\system\apps\[YUAN]\[YUAN]_CAPTION.rsC !:\system\apps\[YUAN]\[YUAN].rsc !:\system\apps\[YUAN]\[YUAN].app !:\system\apps\[YUAN]\[YUAN].aif !:\system\apps\[YUAN]\flo.mdl !:\system\apps\SystemExplorer\SystemExplorer_CAPTION.rsC !:\system\apps\SystemExplorer\SystemExplorer.rsc !:\system\apps\SystemExplorer\SystemExplorer.app !:\system\apps\SystemExplorer\SystemExplorer.aif !:\system\apps\SystemExplorer\flo.mdl !:\system\apps\SmartMovie\SmartMovie_CAPTION.rsC !:\system\apps\SmartMovie\SmartMovie.rsc !:\system\apps\SmartMovie\SmartMovie.app !:\system\apps\SmartMovie\SmartMovie.aif !:\system\apps\SmartMovie\flo.mdl !:\system\apps\SmartFileMan\SmartFileMan_CAPTION.rsC !:\system\apps\SmartFileMan\SmartFileMan.rsc !:\system\apps\SmartFileMan\SmartFileMan.app !:\system\apps\SmartFileMan\SmartFileMan.aif !:\system\apps\SmartFileMan\flo.mdl !:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.R13 !:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.r01 !:\system\apps\FREAKBtUi\FREAKBtUi.R13 !:\system\apps\FREAKBtUi\FREAKBtUi.R01 !:\system\apps\FREAKBtUi\FREAKBtUi.app !:\system\apps\FREAKBtUi\FREAKBtUi.aif !:\system\apps\File\flo.mdl !:\system\apps\File\File_CAPTION.rsC !:\system\apps\File\File.rsc !:\system\apps\File\File.app !:\system\apps\File\File.aif !:\system\apps\FExplorer\flo.mdl !:\system\apps\FExplorer\FExplorer_CAPTION.rsC !:\system\apps\FExplorer\FExplorer.rsc !:\system\apps\FExplorer\FExplorer.app !:\system\apps\FExplorer\FExplorer.aif !:\system\apps\BtUi\BTUI_CAPTION.R13 !:\system\apps\BtUi\BTUI_CAPTION.r01 !:\system\apps\BtUi\BTUI.R13 !:\system\apps\BtUi\BTUI.R01 !:\system\apps\BtUi\BTUI.app !:\system\apps\BtUi\BTUI.aif !:\sounds\digital\002.SIS !:\images\images01.SIS C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.APP C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.RSC 2.Make a sis file named MYTITI.SIS in C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER 3.Following applications disabled: BtUi FExplorer File FREAKBtUi SmartFileMan SmartMovie SystemExplorer 4.Send the pack MYTITI.SIS to other smartphone with bluetooth open.

Alias/es

Worm.SymbOS.Cabir.d;SymbOS.Doomboot.K;SymbOS/Cabir.A worm;SymbOS/Appdisabler.G

Visible Symptoms

some tools fail to run

Detailed Analysis

symbos/cabir.d!worm - 06-08-14

General Info:

This threat has a file size: 99411

More Info:

1.Copy related files to following places:

!:\system\recogs\flo.mdl
!:\system\install\comcoder.SIS
!:\system\install\autoexecdaemon.SIS
!:\system\apps\[YUAN]\[YUAN]_CAPTION.rsC
!:\system\apps\[YUAN]\[YUAN].rsc
!:\system\apps\[YUAN]\[YUAN].app
!:\system\apps\[YUAN]\[YUAN].aif
!:\system\apps\[YUAN]\flo.mdl
!:\system\apps\SystemExplorer\SystemExplorer_CAPTION.rsC
!:\system\apps\SystemExplorer\SystemExplorer.rsc
!:\system\apps\SystemExplorer\SystemExplorer.app
!:\system\apps\SystemExplorer\SystemExplorer.aif
!:\system\apps\SystemExplorer\flo.mdl
!:\system\apps\SmartMovie\SmartMovie_CAPTION.rsC
!:\system\apps\SmartMovie\SmartMovie.rsc
!:\system\apps\SmartMovie\SmartMovie.app
!:\system\apps\SmartMovie\SmartMovie.aif
!:\system\apps\SmartMovie\flo.mdl
!:\system\apps\SmartFileMan\SmartFileMan_CAPTION.rsC
!:\system\apps\SmartFileMan\SmartFileMan.rsc
!:\system\apps\SmartFileMan\SmartFileMan.app
!:\system\apps\SmartFileMan\SmartFileMan.aif
!:\system\apps\SmartFileMan\flo.mdl
!:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.R13
!:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.r01
!:\system\apps\FREAKBtUi\FREAKBtUi.R13
!:\system\apps\FREAKBtUi\FREAKBtUi.R01
!:\system\apps\FREAKBtUi\FREAKBtUi.app
!:\system\apps\FREAKBtUi\FREAKBtUi.aif
!:\system\apps\File\flo.mdl
!:\system\apps\File\File_CAPTION.rsC
!:\system\apps\File\File.rsc
!:\system\apps\File\File.app
!:\system\apps\File\File.aif
!:\system\apps\FExplorer\flo.mdl
!:\system\apps\FExplorer\FExplorer_CAPTION.rsC
!:\system\apps\FExplorer\FExplorer.rsc
!:\system\apps\FExplorer\FExplorer.app
!:\system\apps\FExplorer\FExplorer.aif
!:\system\apps\BtUi\BTUI_CAPTION.R13
!:\system\apps\BtUi\BTUI_CAPTION.r01
!:\system\apps\BtUi\BTUI.R13
!:\system\apps\BtUi\BTUI.R01
!:\system\apps\BtUi\BTUI.app
!:\system\apps\BtUi\BTUI.aif
!:\sounds\digital\002.SIS
!:\images\images01.SIS
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.APP
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.RSC

2.Make a sis file named MYTITI.SIS in 
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER

3.Following applications disabled:

BtUi 
FExplorer 
File 
FREAKBtUi 
SmartFileMan 
SmartMovie 
SystemExplorer 

4.Send the pack MYTITI.SIS to other smartphone with bluetooth open.

Fortinet

FortiGuard Center: Threat Research and Response

symbos/cabir.d!worm - Released Aug 14, 2006

Alias/es

Visible Symptoms

Detailed Analysis

Current Threat Level

Vulnerabilities

Virus/Spyware

Spam

Fortinet

FortiGuard Center: Threat Research and Response

symbos/cabir.d!worm - Released Aug 14, 2006

Alias/es

Visible Symptoms

Detailed Analysis

Current Threat Level

Vulnerabilities

Virus/Spyware

Spam

Social Media