1. /
  2. Security Response/
  3. SymbOS.Pbstealer.D

SymbOS.Pbstealer.D

Risk Level 1: Very Low

Discovered:
January 18, 2006
Updated:
February 13, 2007 12:50:42 PM
Also Known As:
SYMBOS_PBSTEAL.D [Trend Micro]
Type:
Trojan Horse
Systems Affected:
EPOC


SymbOS.Pbstealer.D is a Trojan horse that runs on the Symbian OS, which is used as the operating system for Nokia Series 60 cellular telephones. The Trojan sends the user's contact information database, Notepad, and Calendar To Do list to other Bluetooth-enabled devices.

It has been reported that the Trojan arrives on the compromised device as the following files:
ChattingYuk.SIS
PBCompressor.SIS

If the user opens this .sis file, the device Installer displays a dialog box to warn the user that the application may be coming from an untrusted source and may cause potential problems.




Symantec recommends the following to protect against this threat:
  • If Bluetooth is not required, it should be turned off.
  • If you require the use of Bluetooth, ensure that the device's visibility setting is set to "Hidden" so that it can not be scanned by other Bluetooth devices.
  • Avoid use of device pairing. If it must be used, ensure that all paired devices are set to "Unauthorized". This requires each connection request to be authorized by the user.
  • Do not accept unsigned applications (no digital signature) or applications sent from unknown sources. Be absolutely sure of the origin of the application before accepting it.

Antivirus Protection Dates

  • Initial Rapid Release version January 19, 2006
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version January 19, 2006
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date January 25, 2006
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Low

Distribution

  • Distribution Level: Low
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver