Content
SymbOS/MultiDropper.CR
- Type
- Trojan
- SubType
- -
- Discovery Date
- 03/04/2008
- Length
- 143,158
- Minimum DAT
- 5244 (03/04/2008)
- Updated DAT
- 5244 (03/04/2008)
- Minimum Engine
- 5.1.00
- Description Added
- 03/04/2008
- Description Modified
- 03/04/2008 4:12 AM (PT)
Tab Navigation
Characteristics
SymbOS/MultiDropper.CR is distributed as a SIS file. All of the component malware is set to run on installation.
The interaction of the various component malware works to extort money from the user.
SymbOS/MultiDropper.CR attempts to sign the user up to a QQ account. It also forwards all SMS to the malware author. Incoming and outgoing SMS are deleted.
After a delay a warning message is displayed , telling the user to send money to the malware author.
Symptoms
- Incoming and outgoing SMS messages are deleted
- A warning mesage is displayed that attmpts t extort money from the user
- Battery life may be shortened due to Bluetooth transfers
Method of Infection
Removal
-
Variants
Variants
N/A
All Information
Overview -
SymbOS/MultiDropper.CR consists of SymbOS/Commwarrior.C, SymbOS/Beselo.B1, SymbOS/Kiazha.A, SymbOS/SmsSend.F and SymbOS/SmsSend.G.
Characteristics
Characteristics -
SymbOS/MultiDropper.CR is distributed as a SIS file. All of the component malware is set to run on installation.
The interaction of the various component malware works to extort money from the user.
SymbOS/MultiDropper.CR attempts to sign the user up to a QQ account. It also forwards all SMS to the malware author. Incoming and outgoing SMS are deleted.
After a delay a warning message is displayed , telling the user to send money to the malware author.
Symptoms
Symptoms -
- Incoming and outgoing SMS messages are deleted
- A warning mesage is displayed that attmpts t extort money from the user
- Battery life may be shortened due to Bluetooth transfers
Method of Infection
Method of Infection -
Removal -
Removal -
-
Variants
Variants -
N/A
