Worm:SymbOS/Beselo

Threat description

Details

Category: Malware
Type: Bluetooth-Worm
Platform: SymbOS
Date Discovered: 2007-12-21 10:18:39.0

Summary

Beselo is a MMS and Bluetooth worm family that operates on Symbian S60 Second Edition devices. The Beselo family is very similar to the Commwarrior family but contains enough differences in the code base and behavior that it is counted as separate family.



Removal

Disinfecting using F-Secure Mobile Security
  • Download F-Secure Mobile Security and activate it
  • Scan the phone and remove any components of the malware
  • Reboot the phone to remove memory resident components


Technical Details

Beselo worms spread via Bluetooth and MMS as Symbian SIS installation files.

The installation file is not labeled with the .SIS extension. The SIS file is named with MP3, JPG, or RM extensions in order to trick the recipient into thinking that it is multimedia file.

If the phone user attempts to open the file, Symbian will recognize it as an installation file and will start the application installer.

Please see the following variant descriptions for additional details:

Additional Notes:

Variants Beselo.C, Beselo.D and Beselo.E are closely related to Beselo.B.





Description Created: 2008-01-22 10:18:08.0

Description Last Modified: 2008-03-06 13:57:35.0


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Sample

Protect your life on every device

F-Secure SAFE looks out for you and the people close to you, on every device, all the time.

Learn More