Home / malwarePDF  

Trojan:SymbOS/Doomboot.B


First posted on 12 July 2010.
Source: SecurityHome

Aliases :

There are no other names known for Trojan:SymbOS/Doomboot.B.

Explanation :

Also known as a trojan horse program, this is a deceptive program that performs additional actions without the user's knowledge or permission. It does not replicate.

Additional DetailsTrojan:SymbOS/Doomboot.B is closely related to the previously released variant, Trojan:SymbOS/Doomboot.A. It spreads in an SIS file named 'Restart_20.sis'.

The major difference between Doomboot.B and Doomboot.A is that the Doomboot.B does not contain a Worm:SymbOS/Commwarrior payload; instead, it contains application that reboots the phone.

Doomboot.B pretends to be an utility that can be used to reboot a phone. The Doomboot.B actually contains an utility that is used to reboot the phone, but when user uses this application, the corrupted binaries in Doomboot prevent the phone from booting again.

Note

If you have installed Doomboot.B, the most important thing is not to reboot the phone and follow the disinfection instruction in this description.

If you have rebooted the phone and the phone will not start again, the phone can be recovered with hard format key code that is entered in the phone boot. Please refer to your phone manual for the code.

Last update 12 July 2010

 

TOP