SymbOS/SendTool!sis

SymbOs/SendTool!sis targets the following platforms:

• Nokia 6600 (Symbian OS v7.0s; Series 60 Developer Platform 2.0/Firmware: 4.09.1)
• Nokia 6681 (Symbian OS v8.0a; Series 60 2nd Edition, Feature Pack 2/Firmware: 3.10.6

It is likely that the virus will be recieved in a .SIS installation package file named:

• Fspreader.SIS

SymbOs/SendTool!sis is used to propagate other malware such as  SymbOS/PBSender.gen!sis. 

This requires user interaction to spread the SymbOS/PBSender.gen!sis.  If SymbOS/PBSender.gen!sis file is placed in the root of the MMC, selecting the 'Spread...' command will send it to other devices cia Bluetooth.

Upon running this malware, the user will be prompted to confirm installation.

After installation, the main terminal screen will look as follows:

It is possible with this tool to send any other malware. The path to the new malware must be entered prior to sending via the 'Spread...' command.

SymbOs/SendTool!sis replicates over bluetooth connections and arrives to phone messaging inbox as Fspreader.SIS file that contains the worm. When user clicks the Fspreader.SIS and chooses to install the Fspreader.SIS file the worm activates and starts looking for new devices to infect over bluetooth.

Prevention
This malware requires that the user intentionally install it upon the device. As always, users should never install unknown or un-trusted software. This is especially true for illegal software, such  as cracked
applications?they are a favorite vector for malware infection.

How to Uninstall
SymbOS/Btsendtool.A does not disable the Application Manger application, so it may be used for uninstallation.