1. /
  2. Security Response/
  3. iPhoneOS.Ikee.B


Risk Level 1: Very Low

November 22, 2009
November 22, 2009 8:25:36 PM
Also Known As:
iPh/Duh-A [Sophos], OSX/iPhDownloader.A [McAfee], OSX/RRoll.C [McAfee]
iPhoneOS.Ikee.B is a worm that spreads through jailbroken iPhones by using the default SSH password. It may steal sensitive information and perform additional malicious activities on the compromised device.

Antivirus Protection Dates

  • Initial Rapid Release version November 22, 2009 revision 018
  • Latest Rapid Release version February 12, 2015 revision 004
  • Initial Daily Certified version November 22, 2009 revision 020
  • Latest Daily Certified version February 12, 2015 revision 017
  • Initial Weekly Certified release date November 25, 2009
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Low
  • Payload: Spreads through SSH.
  • Modifies Files: Overwrites the background wallpaper.


  • Distribution Level: Low
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Andrea Lelli

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report