TrendLabs Malware Blog
Glossary
TrendWatch
TrendLabs Twitter
WORM_OPASERV.E
Overview
Solution

Malware type: Worm

Aliases: Net-Worm.Win32.Opasoft.a.pac (Kaspersky), W32.Opaserv.E.Worm (Symantec), Worm/OpaSoft.BC (Avira), W32/Opaserv-C (Sophos),

In the wild: No

Destructive: No

Language: English

Platform: Windows 95, 98, ME

Encrypted: Yes

Overall risk rating:

Reported infections:

Damage potential:

 High

Distribution potential:

 High

Infection Channel 1 : Propagates via network shares

Infection Channel 2 : Propagates via software vulnerabilities

Description: 

This worm takes advantage of the Share Level Password vulnerability on Windows systems to propagate via network shared C:\ drives. This vulnerability allows a remote user to access a Windows 9x/ME shared file without having to know the entire password assigned to that share. More information on this vulnerability is available at:

This worm connects to the site www.n{BLOCKED}t.com.br to automatically update itself. At the time of this writing, the site is down and inaccessible.

For additional information about this threat, see:
Solution
Technical Details

Description created: Oct. 20, 2002 11:31:02 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.