WORM_ONLINEG.TTY |
|
| BugsAlert Home > WORM_ONLINEG.TTY | |
|
This worm may either be dropped or downloaded from remote sites by other malware. Upon execution, it drops a copy of itself, a DLL component, and a non-malicious file in the system. It also creates a new folder. It modifies the system registry such that its automatic execution at every system startup is enabled. Also through system registry modification, it hides files with both System and Read-only attributes. This worm propagates via physical and removable drives. It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed. As part of its routine, this worm drops CRYP_XED-6 and TSPY_ONLINEG.BWN as its components. As a result, malicious routines of the dropped files are exhibited on the affected system. Original Source: http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_ONLINEG.TTY Learn more about WORM_ONLINEG.TTY |
|
| Tags: worm onlineg.tty | |
Related Items |
|
|
OpenBSD Security Update Fixes Multiple Denial of Service Vulnerabilities
|
|
|
Denial of Service in PacketTrap TFTP server 2.0.3901.0
|
|
|
New Flash vulnerabilities -- exploits in the wild
|
|
|
Debian Security Update Fixes Apache Tomcat Multiple Vulnerabilities
|
|
|
Mandriva: Updated Qt4 packages fix vulnerability in
|
|
|
CVE-2007-6185 (Eurologon CMS)
|
|
|
CVE-2008-3545 (openview_network_node_manager)
|
|
