|
Description:
This memory-resident worm propagates via network shares. It uses a list of user names and passwords to gain access of a target machine and drop a copy of itself into its shared folders.
This worm has the ability to disable the Distributed Component Object Model (DCOM) and the enumeration of SAM accounts and names on an infected system by modifying the Windows registry.
It has backdoor capabilities, which enables it to connect to a remote IRC server and channel to wait for commands from a remote user. It also steals CD keys of popular game applications.
It runs on Windows 95, 98, ME, NT, 2000 and XP.
For additional information about this threat, see:
Solution
Technical Details
Description created: Jun. 12, 2004 12:14:40 AM GMT -0800
Search a new malware
Tell us how we did. Take our quick survey.
|
Save & Share
