WORM_NUWAR.BC |
|
| BugsAlert Home > WORM_NUWAR.BC | |
|
This worm arrives as attachment to email messages spammed by another malware or a malicious user. It may be downloaded from certain remote sites. It drops copies of itself. It drops files/components. It creates registry entries to enable its automatic execution at every system startup. It creates registry key(s)/entry(ies). It uses its own Simple Mail Transfer Protocol (SMTP) engine to send email messages that contain a link pointing to a remote copy of itself. Below is a sample of the email message it sends out:
It opens ports where it listens for remote commands. This routine effectively compromises the affected system. It invokes a certain legitimate file to bypass the Windows Firewall. It also attempts to connect to a known malicious Web site. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_NUWAR.BC Learn more about WORM_NUWAR.BC |
|
| Tags: worm nuwar.bc | |
Related Items |
|
|
Apple Mac OS X Security Update Fixes Multiple Vulnerabilities
|
|
|
Which is best
|
|
|
CVE-2008-1236 (Firefox, Thunderbird, SeaMonkey)
|
|
|
Jokes Website "jokeid" SQL Injection Vulnerability
|
|
|
CVE-2008-2356 (archangel_weblog)
|
|
|
SUSE update for clamav
|
|
|
CVE-2008-5626 (xm_easy_personal_ftp_server)
|
|
