symbos/cabir.d!worm

Alias/esWorm.SymbOS.Cabir.d;SymbOS.Doomboot.K;SymbOS/Cabir.A worm;SymbOS/Appdisabler.G
Release DateAug 14, 2006
Detection Availability
Active DatabaseExtended Database
FortiGatelowhigh
FortiClient
FortiMailN/A
Current Antivirus Definition Database Version: 12.323
Description

Visible Symptoms

some tools fail to run

Detailed Analysis

symbos/cabir.d!worm - 06-08-14


General Info:

This threat has a file size: 99411

More Info:

1.Copy related files to following places:

!:\system\recogs\flo.mdl
!:\system\install\comcoder.SIS
!:\system\install\autoexecdaemon.SIS
!:\system\apps\[YUAN]\[YUAN]_CAPTION.rsC
!:\system\apps\[YUAN]\[YUAN].rsc
!:\system\apps\[YUAN]\[YUAN].app
!:\system\apps\[YUAN]\[YUAN].aif
!:\system\apps\[YUAN]\flo.mdl
!:\system\apps\SystemExplorer\SystemExplorer_CAPTION.rsC
!:\system\apps\SystemExplorer\SystemExplorer.rsc
!:\system\apps\SystemExplorer\SystemExplorer.app
!:\system\apps\SystemExplorer\SystemExplorer.aif
!:\system\apps\SystemExplorer\flo.mdl
!:\system\apps\SmartMovie\SmartMovie_CAPTION.rsC
!:\system\apps\SmartMovie\SmartMovie.rsc
!:\system\apps\SmartMovie\SmartMovie.app
!:\system\apps\SmartMovie\SmartMovie.aif
!:\system\apps\SmartMovie\flo.mdl
!:\system\apps\SmartFileMan\SmartFileMan_CAPTION.rsC
!:\system\apps\SmartFileMan\SmartFileMan.rsc
!:\system\apps\SmartFileMan\SmartFileMan.app
!:\system\apps\SmartFileMan\SmartFileMan.aif
!:\system\apps\SmartFileMan\flo.mdl
!:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.R13
!:\system\apps\FREAKBtUi\FREAKBtUi_CAPTION.r01
!:\system\apps\FREAKBtUi\FREAKBtUi.R13
!:\system\apps\FREAKBtUi\FREAKBtUi.R01
!:\system\apps\FREAKBtUi\FREAKBtUi.app
!:\system\apps\FREAKBtUi\FREAKBtUi.aif
!:\system\apps\File\flo.mdl
!:\system\apps\File\File_CAPTION.rsC
!:\system\apps\File\File.rsc
!:\system\apps\File\File.app
!:\system\apps\File\File.aif
!:\system\apps\FExplorer\flo.mdl
!:\system\apps\FExplorer\FExplorer_CAPTION.rsC
!:\system\apps\FExplorer\FExplorer.rsc
!:\system\apps\FExplorer\FExplorer.app
!:\system\apps\FExplorer\FExplorer.aif
!:\system\apps\BtUi\BTUI_CAPTION.R13
!:\system\apps\BtUi\BTUI_CAPTION.r01
!:\system\apps\BtUi\BTUI.R13
!:\system\apps\BtUi\BTUI.R01
!:\system\apps\BtUi\BTUI.app
!:\system\apps\BtUi\BTUI.aif
!:\sounds\digital\002.SIS
!:\images\images01.SIS
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.APP
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER\MYTITI.RSC

2.Make a sis file named MYTITI.SIS in 
C:\SYSTEM\SYMBIANSECUREDATA\MYTITISECURITYMANAGER

3.Following applications disabled:

BtUi 
FExplorer 
File 
FREAKBtUi 
SmartFileMan 
SmartMovie 
SystemExplorer 

4.Send the pack MYTITI.SIS to other smartphone with bluetooth open.
Reference: ID - 99250