PE_PARITE.A |
|
| BugsAlert Home > PE_PARITE.A | |
|
This file infector infects .EXE and .SCR files on an infected system and on remote network shares with read and write access. It makes use of random ports in order to access network shares. Upon execution, it drops a .TMP file detected by Trend Micro as PE_PARITE.A-O. It should be noted that it may also arrive as an email file (EML) file that contains the malware executable. In this form, this file infector executes when the malicious EML file is opened. Once opened, it searches for HTM or HTML files on the infected system with the strings "README" in their file names. Once found, it drops a copy of the .EML file into the folder where the infected .HTML file is found. The infected HTML file is detected by Trend Micro as JS_NIMDA.A. Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/168442891/default5.asp Learn more about PE_PARITE.A |
|
| Tags: parite.a | |
Related Items |
|
|
5th Avenue "category_ID" SQL Injection Vulnerability
|
|
|
Bugtraq: Re: Microsoft FTP Client Multiple Bufferoverflow Vulnerability
|
|
|
Slackware: seamonkey
|
|
|
Email-Worm.Win32.Warezov.nf
|
|
|
CVE-2008-5731 (desktop)
|
|
|
JFreeChart Image Map Cross-Site Scripting Vulnerabilities
|
|
|
CVE-2008-3216 (projectl)
|
|
