VBS_SOLOW.V |
|
| BugsAlert Home > VBS_SOLOW.V | |
|
This VisualBasic (VB) Script arrives on a system as a dropped file of other malware. It also arrives via network and removable drives. Upon execution, it drops copies of itself as KERNEL32.DLL.VBS in the Windows system folder and in the root folders of drives C to Z. It also drops an AUTORUN.INF file in the same drives to automatically execute the dropped copies when the drives are accessed. To ensure automatic execution at every system startup, it creates a certain registry entry. It also adds a particular registry entry, which changes the text displayed in the title bar of Internet Explorer. It requires the presence of the normal file WSCRIPT.EXE to execute properly. Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/200488510/default5.asp Learn more about VBS_SOLOW.V |
|
| Tags: vbs solow.v | |
Related Items |
|
|
TROJ_DLOADER.GTZ
|
|
|
CVE-2008-1475 (Roundup)
|
|
|
Bugtraq: PeteFinnigan.com Limited advisory for Oracle January 2008 CPU
|
|
|
Gentoo: PostgreSQL Multiple vulnerabilities
|
|
|
CVE-2008-0557 (CatalogShop)
|
|
|
Xpdf Embedded Fonts Processing Vulnerability
|
|
|
CVE-2008-2549 (Acrobat Reader)
|
|
