VirusSymbOS/Appdisabler.A!tr
Analysis
SymbOS/Appdisabler.A!tr - 06-08-02
General Info:
This threat has a file size: 31210
Installation to System:
- Drops the following files:
!:\system\apps\RAGHUMenu\RAGHUMENU.APP !:\system\apps\RAGHU\RAGHU.app C:\Images\RAGHU.txt C:\Images\raghu crack.jpg
More Info:
1. It is a Symbian virus, packed in .sis format.
2. Displays the following message prompting the user to install:
Install
RAGHU?
3. The following message will show on the screen during the installation:
This installer was created with MakeSis 0.9 by Gip. For info: gip_mad@email.it
4. Drops the following files to disable the relevant applications in the phone:
!:\system\apps\AD7650\AD7650.App
!:\system\apps\AnswRec\AnswRec.App
!:\system\apps\BlackList\BlackList.App
!:\system\apps\BlueJackX\BlueJackX.App
!:\system\apps\callcheater\callcheater.app
!:\system\apps\CallManager\CallManager.App
!:\system\apps\Camcoder\Camcoder.App
!:\system\apps\camerafx\CameraFX.App
!:\system\apps\ETICamcorder\ETICamcorder.App
!:\system\apps\ETIMovieAlbum\ETIMovieAlbum.App
!:\system\apps\ETIPlayer\ETIPlayer.App
!:\system\apps\extendedrecorder\extendedrecorder.App
!:\system\apps\FExplorer\FExplorer.App
!:\system\apps\FSCaller\FSCaller.App
!:\system\apps\FaceWarp\FaceWarp.App
!:\system\apps\Hair\Hair.App
...
These files are 6 bytes in size.
Telemetry
Detection Availability
| FortiClient | |
|---|---|
| Extreme | |
| FortiMail | |
| Extreme | |
| FortiSandbox | |
| Extreme | |
| FortiWeb | |
| Extreme | |
| Web Application Firewall | |
| Extreme | |
| FortiIsolator | |
| Extreme | |
| FortiDeceptor | |
| Extreme | |
| FortiEDR |