Help - Search - Members - Calendar
Full Version: Netsky AG - New variant in-the-wild
BleepingComputer.com > Security > Breaking Virus & Security News
   
harrywaldron
Oct 14 2004, 06:36 AM
Even though the author has been arrested, new versions of this virus family continue to be developed. In fact Netsky.P reamins one of the worst email viruses since Klez.H.

As noted, Secunia provides a good summary of all AV vendors (as many have differing suffixes). Thankfully, this new variant remains low-risk by most AV vendors currently.

Secunia Information
http://secunia.com/virus_information/12662/

McAfee - W32/Netsky.ag@MM
http://vil.nai.com/vil/content/v_128905.htm

Symantec - W32.Netsky.AD@mm (currently rated Level 2)
http://www.sarc.com/avcenter/venc/data/w32.netsky.ad@mm.html
This variant of W32/Netsky is similar to previous variants. It bears the following characteristics:

* constructs messages using its own SMTP engine
* harvests email addresses from the victim machine
* spoofs the From: address of messages

Avoid all EMAIL attachments that end as follows:

.pif
.com
.scr
.bat
.zip
harrywaldron
Oct 14 2004, 12:10 PM
McAfee just went MEDIUM RISK with DAT 4399 issued
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2009 Invision Power Services, Inc.