SymbOS.Feakks Worm
SymbOS.Feakks , Writeup By: Masaki SuenagaRisk Level 1: Very Low
SUMMARY
Discovered: March 7, 2007
Updated: March 8, 2007 5:13:54 AM
Type: Worm
Infection Length: 3,276 bytes
Systems Affected: Symbian OS
SymbOS.Feakks is a proof of concept worm that spreads through SMS messages.
Threat Assessment: Wild
Wild Level: Low
Number of Infections: 0 - 49
Number of Sites: 0 - 2
Geographical Distribution: Low
Threat Containment: Easy
Removal: Easy
Damage
Damage Level: Low
Payload: Spreads through SMS messages.
Distribution
Distribution Level: Low
Technical Details
Infection Length: 3,276 bytes
Systems Affected: Symbian OS
Once executed, the worm creates the following files:
%System%/apps/feakk.exe
%System%/recogs/feakk.mdl
The worm then searches the contact list for "HACKME" and terminates itself if it is not found.
The worm sends a link that contains a copy of the worm to all the contacts found.
Removal
Install a file manager program on the device.
Enable the option to view the files in the system folder.
Delete the following files:
%System%/apps/feakk.exe
%System%/recogs/feakk.mdl
Exit the file manager.
<< Home