|
Description:
This per-process, memory-resident, polymorphic virus infects all .EXE and .SCR files. It also infects the system by modifying the registry so that it executes every time Windows is started.
This virus, which has worm capabilities, sends out infected files using Microsoft Outlook, Outlook Express, or Netscape Navigator to all addresses listed in the infected user's Windows and Outlook Express address books. Due to its polymorphic nature, the email that it sends out has varying subject lines, message bodies, and attachment names.
This malware carries a destructive payload that destroys the primary hard disk drive controller, overwrites CMOS RAM, and erases flash memory, which contains BIOS data, one month after its initial execution. It employs complex routines and anti-debugging techniques that make it very difficult to analyze.
This malware runs on Windows 95, 98, ME, NT, 2000, and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Mar. 13, 2001 11:55:42 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
