|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
 |
| |
The worm spreads in e-mails with war-related subjects as an attachment named "video.exe", "movie.exe", "click me.exe" and so on. The worm creates its own peer-to-peer network. | | |
|
| |
Agent.BKY is a worm and a trojan-downloader. It infects .HTML, .PHP and some other files with a small script that points to a website, hosting a file with the recently discovered (March/April 2007) ANI exploit.
The worm also spreads to remote and removable drives, modifies the HOSTS file and downloads more malicious files onto an infected computer. This malware is similar to the worm that we detect as Worm:W32/Anito.A. | | |
|
|
Trojan-Dropper, Email-Worm |
This description is for two detections: Email-Worm:W32/Anito.A and Worm:W32/Anito.A.
Email-Worm:W32/Anito.A is an e-mail worm and a file infector. It sends out e-mail messages with a URL to a malicious file that contains the recently discovered (March/April 2007) ANI exploit. The worm also drops another malware, a worm and trojan-downloader that we detect as Worm:W32/Anito.A. This worm is similar to the one that we detect as Trojan-Downloader.Win32.Agent.bky and Worm.Win32.Diska.c.
Worm:W32/Anito.A is a worm, a file infector and a trojan-downloader. It infects HTML files with a small script that downloads a file with a recently discovered ANI file exploit. Also EXE files get infected. The worm also spreads to remote drives, modifies the HOSTS file, and downloads more malicious files onto an infected computer. | | |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|