Home>Network Worms>Internet Worms>

Worm.SymbOS.Cabir.b

Alert Level :	Medium
Discovered:	May 16 2007
Tag:	Internet   Worms
Discoverer and Source:	http://www.kaspersky.com/

Malware Behavior and Technical Description

This malicious program is a womr which runs under Symbian. The worm itself is a SIS file. The file is 10,000 bytes in size.

The file spreads via Bluetooth.

Payload

In order for a device to become infected, the user has to accept the malicious file twice:

When installing, the malicious program will display the following two messages:

During installation, the worm will drop the following files to the phone:

• C:\system\apps\OIDI500\OIDI500.aif

  Removal Worm.SymbOS.Cabir.b instructions:

  In order to delete this malicious program, install a file manager application which provides the option to view hidden and system files. Then delete the files listed below:

  C:\system\apps\OIDI500\OIDI500.aif
  C:\system\apps\OIDI500\OIDI500.app
  C:\system\apps\OIDI500\OIDI500.mdl
  C:\system\apps\OIDI500\OIDI500.rsc
  C:\SYSTEM\SYMBIANSECUREDATA\CARIBESECURITYMA\CARIBE.SIS

  Once the files have been deleted, reboot the phone.

  Need help? Live computer support via remote at SupportSpace.Help with printer problems, windows, hardware, software, spyware removal and more. - Go Now!

  Great Anti-Virus Software : Kaspersky Internet Security 2009 Save 35% Buy Panda Global Protection 2009 and Panda Antiviru Download PandaLabs Reports Free AVG virus removel tools Hunting Down Spyware and Adware Adware and spyware, knowing the basics Adware Spyware Remover from CBAdvance Keeping Your Computer in Good Condition Using Free Spyware A Beware of Covert Online Spies Why the Need to Remove Adware and Spyware