1. /
  2. Security Response/
  3. SymbOS.Doomboot.R

SymbOS.Doomboot.R

Risk Level 1: Very Low

Discovered:
December 15, 2005
Updated:
February 13, 2007 12:49:59 PM
Also Known As:
Doomboot.K [F-Secure]
Type:
Trojan Horse
Systems Affected:
EPOC


SymbOS.Doomboot.R is a Trojan horse that installs corrupt files on the compromised device preventing it from restarting correctly. The Trojan runs on the Symbian OS, which is the operating system for Nokia Series 60 cellular telephones.

The Trojan reportedly arrives as F-secure Antivirus.sis. When the user clicks on the .sis file, the phone installer will display a dialog to warn users that the application may be coming from an untrusted source and may cause potential problems.




Symantec recommends the following to protect against this threat:
  • If Bluetooth is not required, it should be turned off.
  • If you require the use of Bluetooth, ensure that the device's visibility setting is set to "Hidden" so that it can not be scanned by other Bluetooth devices.
  • Avoid use of device pairing. If it must be used, ensure that all paired devices are set to "Unauthorized". This requires each connection request to be authorized by the user.
  • Do not accept unsigned applications (no digital signature) or applications sent from unknown sources. Be absolutely sure of the origin of the application before accepting it.


Antivirus Protection Dates

  • Initial Rapid Release version December 15, 2005
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version December 15, 2005
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date December 21, 2005
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Medium

Distribution

  • Distribution Level: Low
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver