Synopsis:
Dampig pretends to be a cracked version of FSCaller version 3.2 application which disables system applications, third-party file managers, and drops variants of the Cabir worm onto the device. Among the applications that Dampig disables are:
Bluetooth UI
System File Manager
Messaging
Phonebook
|
| |
|
|
| |
|
|
Dampig will also corrupt the system's uninstaller information so Dampig cannot be uninstalled.
Finally, Dampig drops variants of the Cabir worm onto the infected device. None of these Cabir executables will be started automatically, but system applications replaced by Cabir executables are likely to be started by the user.
|
Write Up: David P. 5.10.2006 |
