Home / malware Trojan:SymbOS/Singlejump.B
First posted on 16 July 2010.
Source: SecurityHomeAliases :
There are no other names known for Trojan:SymbOS/Singlejump.B.
Explanation :
Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.
Additional DetailsTrojan:SymbOS/Singlejump.B is distributed in a malicious SIS file named 'Metal_gear.sis'.
Singlejump.B was formerly named Trojan:SymbOS/Onehop.B, but was renamed to Singlejump.B for more accurate classification.
Execution
When executed, the trojan disables most well known third party file managers and Anti-Virus software. Singlejump.B tries to disable F-Secure Mobile Anti-Virus by replacing its files with non-functional versions.
It also installs Bluetooth-Worm:SymbOS/Cabir.G on the phone.
Singlejump.B disables the following applications
€ Simworks Anti-Virus € F-Secure Mobile Anti-Virus € Application installer € Cabirfix € Decabir € F-Cabir € FExplorer € File manager € Smart file manager € System Explorer
Detection
F-Secure Mobile Anti-Virus is capable of detecting Cabir.G contained by Singlejump.B using generic detection. The Anti-Virus will detect the infected SIS file and prevent it from being installed.
Last update 16 July 2010
