BleepingComputer.com > Mytob.mx - New Variant Rated As Medium Risk By Trend

Full Version: Mytob.mx - New Variant Rated As Medium Risk By Trend

BleepingComputer.com > Security > Breaking Virus & Security News

harrywaldron

Nov 25 2005, 08:52 AM

Mytob.MX - new variant rated as Medium Risk by Trend

This new mass-mailing worm combines Mydoom functionality with Sdbot functionality. It can launch an IRC bot and install a downloader component that may install other malware from hostile web sites.

McAfee - Mytob.HE (DAT 4636 provides protection)

F-Secure - Mytob.DO

Trend - Mytob.MX information - rated as MEDIUM RISK
Trend - Mytob.MX behavorial chart (excellent analysis)
Trend - Mytob.MX example of email

EMAIL TO BLOCK OR AVOID

Subject: (avoid all of the following)
Your Account is Suspended
*DETECTED* Online User Violation
Your Account is Suspended For Security Reasons
Warning Message: Your services near to be closed.
Important Notification Members Support
Security measures
Email Account Suspension
Notice of account limitation

Attachment: (avoid all of the following)
• {Random file name}.zip
• account-details.zip
• account-info.zip
• account-password.zip
• account-report.zip
• approved-password.zip
• document.zip
• email-details.zip
• email-password.zip
• important-details.zip
• new-password.zip
• password.zip
• updated-password.zip

This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.