|
Description:
This worm propagates by using its own SMTP (Simple Mail Trasfer Protocol) engine to send infected email messages to all contacts found in MSN Messenger. The email message it sends out has the following characteristics:
Subject: El adelanto de matrix ta gueno
Message Body:
Oye te ? paso el programa para entrar a cuentas
del messenger Z y facilingo te lo paso a voz nomas,
prometeme que no se lo pasas a nadie, ya?
u Respondeme que tal te parecio. Chau
Attachment: hotmailpass.exe
On July 3, this worm drops copies of itself in the Windows and Windows system folders using the file names of normal system files and then gives it several EXE extension names. An example of its dropped copy would be EXPLORER.EXE.EXE.EXE.
This memory-resident worm is usually compressed in Aspack and runs on Windows 95, 98, ME, NT, 2000, and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Jun. 30, 2003 12:19:39 PM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
