*

Recent Posts

Welcome, Guest. Please login or register.
November 23, 2024, 07:09:00 AM

Login with username, password and session length

Members
  • Total Members: 61
  • Latest: AciDeX
Stats
  • Total Posts: 28505
  • Total Topics: 1915
  • Online Today: 61
  • Online Ever: 569
  • (August 02, 2024, 06:20:39 AM)
Users Online
Users: 0
Guests: 39
Total: 39

Permissions

Author Topic: W32/Mydoom.f@MM (variant)  (Read 3253 times)

0 Members and 1 Guest are viewing this topic.

Offline ZWarrior

  • Administrator
  • Hero Member
  • *****
  • Posts: 7798
  • Karma: 8
  • Shhh! Be wery wery qwiet...
    • View Profile
    • Ambush!
W32/Mydoom.f@MM (variant)
« on: February 24, 2004, 04:44:18 PM »
(((((((((((((((((((( McAfee Dispatch )))))))))))))))))))))))

------------------------------------------------------------
            ** VIRUS ADVISORY - W32/Mydoom.f@MM **
------------------------------------------------------------


A variant of the original Mydoom virus, W32/Mydoom.f@MM is a Medium Risk mass-mailing worm that can open up hacker backdoors on infected systems and launch denial-of-service attacks that target www.microsoft.com and www.riaa.com domains.

Note: Unlike previous versions of Mydoom, Mydoom.f can also delete image, movie, Excel and Word files on an infected machine.

Like other mass-mailing viruses, W32/Mydoom.f@MM steals email addresses from an infected machine, then mails itself to other computers, often spoofing the "from field." The worm arrives with random subject lines, such as "Please read," "Something for you" or "Please reply". The body of the e-mail contains an executable file often disguised as a text file.

Caution: An infected email can come from addresses you recognize and may contain the following information:
------------------------------------------------------------
***What to look for***

From:      Randomly generated <spoofed>
Subject:    Varies. Examples include:
- Announcement
- ApprovedNews
- Attention
- automatic responder
- Bug

Body:      Varies. Examples include:
- Check the attached document.
- Details are in the attached document. You need Microsoft
  Office to open it.
- Greetings
- Here is the document.
- Here it is
- I have your password :)

Attachment:   Varies [.cmd, .bat, .exe, .pif, .cmd, .scr] but
often arrives in a ZIP archive. 34,686 bytes. Examples
include:
- creditcard.bat
- creditcard.zip
- paypal.zip
- photo.zip
- textfile.zip
------------------------------------------------------------

NOTE: Up-to-date McAfee VirusScan users with dat 4327 are protected from this threat.

Learn More about W32/Mydoom.f@MM
==> http://us.mcafee.com/root/campaign.asp?cid=9674

Scan for W32/Mydoom.f@MM:
==> http://us.mcafee.com/root/campaign.asp?cid=9675
--------------------------------
Zoë: Shepard, isn't the Bible kind of specific about killing?
Book: Very specific. It is, however, somewhat fuzzy around the area of kneecaps.

Offline snauzberries

  • Hero Member
  • *****
  • Posts: 1871
  • Karma: 4
  • Bless me I snauzed!
    • View Profile
W32/Mydoom.f@MM (variant)
« Reply #1 on: February 24, 2004, 04:58:56 PM »
if anyone wants a copyt i get 10 a day

Offline ZWarrior

  • Administrator
  • Hero Member
  • *****
  • Posts: 7798
  • Karma: 8
  • Shhh! Be wery wery qwiet...
    • View Profile
    • Ambush!
W32/Mydoom.f@MM (variant)
« Reply #2 on: February 24, 2004, 05:07:19 PM »
Been a quiet day today, I don't think I recieved any.  Usually large numbers.
--------------------------------
Zoë: Shepard, isn't the Bible kind of specific about killing?
Book: Very specific. It is, however, somewhat fuzzy around the area of kneecaps.

Offline opiesilver

  • Administrator
  • Hero Member
  • *****
  • Posts: 3614
  • Karma: 5
  • Well, Santa is 2000 years old....
    • View Profile
W32/Mydoom.f@MM (variant)
« Reply #3 on: February 25, 2004, 01:25:29 AM »
I seem to get at least one W32/Netsky.b@MM!zip virus email per day.
Mediocre people are always at their best.

Offline JollyRoger

  • That's Captain
  • Hero Member
  • *****
  • Posts: 3965
  • Karma: 5
  • I be plundering the interweb for booty.
    • View Profile
W32/Mydoom.f@MM (variant)
« Reply #4 on: February 25, 2004, 09:19:26 AM »
I don't get viruses in the mail
I feel left ou
No matter how hard you try to push the envelope, remember it's only stationary.

Offline ZWarrior

  • Administrator
  • Hero Member
  • *****
  • Posts: 7798
  • Karma: 8
  • Shhh! Be wery wery qwiet...
    • View Profile
    • Ambush!
W32/Mydoom.f@MM (variant)
« Reply #5 on: February 25, 2004, 12:53:09 PM »
I peaked at over 350 per day last week.
--------------------------------
Zoë: Shepard, isn't the Bible kind of specific about killing?
Book: Very specific. It is, however, somewhat fuzzy around the area of kneecaps.

Offline snauzberries

  • Hero Member
  • *****
  • Posts: 1871
  • Karma: 4
  • Bless me I snauzed!
    • View Profile
W32/Mydoom.f@MM (variant)
« Reply #6 on: February 25, 2004, 04:03:08 PM »
Quote
Originally posted by [303]JollyRoger
I don't get viruses in the mail
I feel left ou



if you want i can send you a couple:D

Offline snauzberries

  • Hero Member
  • *****
  • Posts: 1871
  • Karma: 4
  • Bless me I snauzed!
    • View Profile
W32/Mydoom.f@MM (variant)
« Reply #7 on: February 25, 2004, 04:03:53 PM »
Quote
Originally posted by ZWarrior
I peaked at over 350 per day last week.



nice i only get 10 a day...20 tops....today is a low day i havent got any........

 

Contacts