|
|
|
|
| |
| We reported about the ExploreZip Virus: The ExploreZip Worm is spreading (fast!), but this new variant called 'MiniZip' is hiding itself from antiviral utilities, and spreading in an amazing rate around the Internet. |
| |
Credit:
A possible anti-virus scanner that successfully indentifies MiniZip is symantec's antivirus, more information can be found at:
http://www.symantec.com/avcenter/venc/data/worm.explorezip.pack.html
|
| |
MiniZip is different from ExploreZip by being packed with a compression utility called Neolite. The fact that the Virus is compressed allows it to be hidden from most Anti-Virus applications, while maintaining the original destructive behavior.
The Virus appears as an email message (usually from someone you know and trust) containing the following text:
"I received your email and I shall send you a reply ASAP.
Till then, take a look at the attached zipped docs."
When opening the attachment, an error message appears and the Virus starts to propagate by sending copies of the email message to people on the address book (this works with Microsoft Outlook and Outlook Express).
The Virus is also destructive - it will search all the hard drives for Word Documents, PowerPoint slideshows, Excel Spreadsheets, Source code, and other file types, and delete them.
|
|
|
|
|
|
|
|
|
|
