WORM_FUJACKS.HM |
|
| BugsAlert Home > WORM_FUJACKS.HM | |
|
This worm arrives as a file downloaded unknowingly by a user when visiting malicious Web sites. It drops and executes files/components. It appends its code to infect target host files. It also infects certain file types and avoids folders with certain strings. It searches the network for certain shares and attempts to drop copies of itself in the said shares. It uses a list of user names and passwords to access password-protected shares. It drops copies of itself in all physical drives and removable drives. It also drops a certain file to automatically execute its dropped copies when the said drives are accessed. It terminates certain services and processes if found on the system or in memory. It then closes application windows that contain certain strings. Moreover, it deletes autostart registry entries associated with the processes it terminates. It does the said routine to completely disable applications. It attempts to connect to Web sites. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_FUJACKS.HM Learn more about WORM_FUJACKS.HM |
|
| Tags: worm fujacks.hm | |
Related Items |
|
|
Microsoft Jet Engine MDB File Parsing Stack Overflow Vulnerability
|
|
|
Pi3Web ISAPI Requests Handling Denial of Service Vulnerability
|
|
|
Trojan-Downloader.Win32.Agent.qlh
|
|
|
Even ?Trusted? Web Sites Can Get Compromised
|
|
|
Ping David H. Lipman re DSS
|
|
|
Sun Solstice AdminSuite sadmind adm_build_path()Buffer Overflow Vulnerability
|
|
|
FrSIRT - Dokeos Multiple SQL Injection and Cross Site Scripting Vulnerabilities
|
|
