検索:
ホーム   »     »   Breaking News: CNN helps WORM_NUWAR

Breaking News: CNN helps WORM_NUWAR

  • 投稿日:2006年12月4日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

A WORM_NUWAR variant is on CNN or rather CNN is on a new WORM_NUWAR variant. Using the Cable News Network (CNN) for its “click-me” gimmick, WORM_NUWAR.JO has the following message details in its latest spew of spam:


Subject:(any of the following)



  • White house news!
  • Incredible news!
  • URGENT NEWS!

Message body:(any of the following)



  • Full news included in attached file
  • Open file to get complete news.
  • Read more in attached file…

Attachment:(any of the following)



  • CNN latest news.exe
  • CNN news reader.exe
  • WWW-CNN-COM.exe
  • cnn agent.exe
  • cnn site explorer.exe
  • cnn.exe
  • news agent.exe
  • news reader.exe
  • webnews agent.exe
  • read me.exe

It may be using a different flavored spam but the meat of it is still same; it drops a Trojan, in this case TROJ_SMALL.DUL, into its infected computers. As with other NUWARs, this dropped Trojan downloads other malware components that reveals the true ingenuity of WORM_NUWAR’s attack. Read this article for an in-depth telling of NUWAR’s routines.

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.