SymbOS/RommWar.A is a malicious SIS trojan that installs a malfunctioning system component that cause different behaviour depending on the ROM software version in the device. Different effects witnessed range from freezing of the device requiring a restart, to disabling the power button on the device, or in some cases no apparent effect on device at all.
Based on the effect caused by SymbOS/RommWar.A, removal of the malfunctioning components might be possible by going to application manager and uninstalling the SIS file in which SymbOS/RommWar.A arrived.
CAUTION! this method will remove all data on the device including calendar and phone numbers:
Find the latest advice in our Community Knowledge Base.
See the manual for your F-Secure product on the Help Center.
Submit a file or URL for further analysis.
SymbOS/RommWar.A installs a malfunctioning system binary into the C: drive of the phone and a bootstrap component that executes the malfunctioning system binary. This is followed by different effect depending on the version of the ROM software in the device. Effects witnessed vary from the freezing of the device, to disabling of the power button, or sometimes no apparent effect at all.
Installs a corrupted system binary and a bootstrap component.
In the case of freezing the device, shortly after the device infected with SymbOS/RommWar.A restarts, it shows a notification similar to the picture above. When this notification is displayed the only working function on the device is the option to power-off.
Date Created: -
Date Last Modified: -