WORM_SOHANAD.DW |
|
| BugsAlert Home > WORM_SOHANAD.DW | |
|
This worm may be dropped by other malware. It may also be downloaded unknowingly by a user when visiting malicious Web sites. Upon execution, this worm drops copies of itself. It also drops several non-malicious files. It then creates a registry entry to enable its automatic execution at every system startup. It uses the Windows Task Scheduler to create a scheduled task that executes the dropped copy. This worm creates registry entries to disable Task Manager. This worm drops copies of itself in all physical and removable drives. It also drops an AUTORUN.INF file to automatically execute its dropped copies when the said drives are accessed. This worm connects to certain URLs to download possibly malicious files. As of this writing, however, the said URLs are inaccessible. Original Source: http://feeds.trendmicro.com/~r/MalwareTop10/~3/185326466/default5.asp Learn more about WORM_SOHANAD.DW |
|
| Tags: worm sohanad.dw | |
Related Items |
|
|
Agares PhpAutoVideo 2.21(XSS/RFI) Multiple Remote Vulnerabilities
|
|
|
CVE-2008-0466 (Text Editor)
|
|
|
Debian: New opensc packages fix smart card vulnerability
|
|
|
Kyocera FS-118MFP Command Center Directory Traversal Vulnerability
|
|
|
Vuln: RealNetworks RealPlayer SWF File Heap Based Buffer Overflow Vulnerability
|
|
|
Vuln: Computer Associates ARCserve Backup Multiple Remote Vulnerabilities
|
|
|
CVE-2008-1962 (aterr)
|
|
