WAVCi: First fake eicar test string inside a mobile virus!

Wednesday, March 08, 2006

First fake eicar test string inside a mobile virus!

My friend Mikko H. Hypponen of F-Secure sent me yesterday the first fake eicar.com (test string) inside a mobile virus. It seems to be dropped dropped by a new Symbian virus (Appdisabler.I). It won't run and it contains this text: {Series60ProductID}$EICAR-SYMBIAN-ANTIVIRUS-TEST-FILE-2006!
What could be the reason to drop such a file which is even not detected as the real eicar string and which can't be run.... tell me!
Thanks Mikko for bringing this up to the EICAR organisation.

<< Home

: Name: Eddy Willems; Location: Brussels, Belgium

I am professionally occupied with security and malware research, consultancy, training, media and PR. I now work as Security Evangelist for G Data Software AG. Formerly I worked for Kaspersky Lab and NOXS(Westcon). I'm also the Director External Security Industry Relationships for the EICAR organisation (European Institute for Computer Anti Virus Research). You can find a more detailed BIO on my website www.wavci.com

View my complete profile

Subscribe to my WEBLOG
Feedburner feed

or
Atom feed

or
RSS feed

WAVCi

Wednesday, March 08, 2006

First fake eicar test string inside a mobile virus!

About Me

Previous Posts