1. Skip to navigation
  2. Skip to content
  3. Skip to secondary-content

Where You Are

  1. Labs
  2. Threats
  3. Virus and threat descriptions
  4. Cxover.A

Cxover.A

Name : Crossover virus
Category:Virus
Platform:MSIL

Summary

MSIL/Cxover.A is a prooof-of-concept virus written in Microsoft .NET's Microsoft Intermediate Language (MSIL) that can affect both PCs using Windows OS with .NET runtime installed and Windows Mobile handheld devices supporting .NET.

Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Additional Details

Cxover.A infects devices over Microsoft's ActiveSync protocol. If the Cxover.A binary is executed on a Windows Mobile device, it looks for the PC over the ActiveSync connection and copies itself to the PC so that it will start automatically at next boot.

If Cxover.A is executed on a Windows PC it will search for any handled devices connected over ActiveSync and copy itself there.

F-Secure Anti-Virus detects this malware with the following updates:

[FSAV_Database_Version]
Version = 2006-03-15_02.



Detection

F-Secure Mobile Anti-Virus for Windows Mobile detects this malware starting from the update build number 16.