Trojan:SymbOS/OpFake.A
Trojan:SymbOS/OpFake.A is a mischievous Trojan that pretends to be an Opera Mini updater using the file names such as 'Update6.1.sisx' and 'OperaUpdater.sisx'. The Trojan:SymbOS/OpFake.A installer adds an Opera icon to the application menu. Once executed, it will show a menu and a fictitious download progress bar. Trojan:SymbOS/OpFake.A also has a nonexistent license which can be shown. When Trojan:SymbOS/OpFake.A is run, and before the computer user advances through any of the menus, Trojan:SymbOS/OpFake.A is already sending text messages to Russian premium rate numbers. The numbers and the content of the messages come from an encrypted configuration file called 'sms.xml. Trojan:SymbOS/OpFake.A traces whether it has been executed before, and won't do anything except for the first time it is executed. Trojan:SymbOS/OpFake.A has been self-signed using a certificate generated by the hackers themselves. Trojan:SymbOS/OpFake.A as early as possible.
File System Details
| # | File Name |
Detections
Detections: The number of confirmed and suspected cases of a particular threat detected on
infected computers as reported by SpyHunter.
|
|---|---|---|
| 1. | jimm.sisx | |
| 2. | Update6.1.sisx | |
| 3. | OperaUpdater.sisx |
Submit Comment
Please DO NOT use this comment system for support or billing questions. For SpyHunter technical support requests, please contact our technical support team directly by opening a customer support ticket via your SpyHunter. For billing issues, please refer to our "Billing Questions or Problems?" page. For general inquiries (complaints, legal, press, marketing, copyright), visit our "Inquiries and Feedback" page.