VBS_SASAN.A |
|
| BugsAlert Home > VBS_SASAN.A | |
|
This malicious VBScript propagates by dropping copies of itself in physical and removable drives. It also drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed. This VBScript arrives on a system as a file dropped by other malware, or downloaded by an unsuspecting user when visiting malicious Web sites. It may also arrive via removable drives. Upon execution, it drops the following copies of itself in the Windows folder. The said files have attributes set to Read-Only, Hidden, and System to avoid easy detection. It modifies the registry to enable Autoplay feature on all drives and hide files with certain file name extensions. Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/222383174/default5.asp Learn more about VBS_SASAN.A |
|
| Tags: vbs sasan.a | |
Related Items |
|
|
PHP-Nuke Module NukeC30 sql injection
|
|
|
CVE-2008-1454 (windows-nt)
|
|
|
CVE-2008-0028 (PIX 500 Series Security Appliance, 5500 Series Adaptive Security Appliance)
|
|
|
Pidgin SSL Verification Security Issue
|
|
|
FrSIRT - Mandriva Security Update Fixes Xdg-utils Code Injection Vulnerabilities
|
|
|
CVE-2008-1426 (KAPhotoservice)
|
|
|
HIS-Webshop "t" Directory Traversal Vulnerability
|
|
