Malware type: Perl Script

Aliases: PERL/Nanika.2 (Avira),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Description: 

To get a one-glance comprehensive view of the behavior of this malware, refer to the Behavior Diagram shown below.

Malware Overview

This Perl script creates a file named NANIKA.PPT, which is detected by Trend Micro as TROJ_AKINA.A, on an affected system.

The said file is a proof-of-concept exploit that takes advantage of a zero-day buffer overflow vulnerability in Microsoft PowerPoint 2003. Exploiting the said vulnerability causes Microsoft PowerPoint 2003 to crash.

For additional information about this threat, see:
Solution
Technical Details

Description created: Oct. 13, 2006 6:04:16 PM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.