Login or Register to Ask a Question and Join Our Community


Malware Advisories (RSS)

Worm_agent.ack

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Malware Advisories (RSS) Worm_agent.ack
# 1  
Old 01-14-2008
Worm_agent.ack
This worm may be dropped by other malware. It may be downloaded unknowingly by a user when visiting malicious Web sites.
This worm creates several folders. It drops copies of itself.
It drops several components, some of which are detected as VBS_AGENT.CWV. This worm then creates a registry entry to enable its automatic execution at every system startup.

This worm creates the following registry entries to disable Task Manager. It also creates a registry entry to enable file-sharing via Kazaa. It creates entries for subkeys of specific application names appearing under a registry key.It drops several .ZIP files that contains a copy of itself. The said ZIP files are not password-protected. Trend Micro detects the files as WORM_AGENT.ACK. This worm then shares the folder where the said .ZIP files are located.
It also drops the non-malicious files AUTORUN.INF and AUTORUN2.INF.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

4 More Discussions You Might Find Interesting

1. IP Networking

TCP Same Ack Sequencing for Two Packets

I was analyzing a TCP snoop. And found following scenario From Server to Client ---> SEQ 2993 ACK 1744 WIN 8192 LEN 13 From Server to Client ---> SEQ 3006 ACK 1744 WIN 8192 LEN 13 From Client to server --> SEQ 1744 ACK 3019 WIN 3304 I just want to know Why Packet 1 and 2... (3 Replies)
Discussion started by: mr_deb
3 Replies

2. UNIX for Advanced & Expert Users

What is FIN/ACK/SYN

Please tell me details about terms FIN, ACK, SYN, RST; used in TCP based communication. Also tell me any RFC or other document which tell me details about these terms. (1 Reply)
Discussion started by: mansoorulhaq
1 Replies

3. UNIX for Dummies Questions & Answers

ACK! Help! What do I do?

Hiya folks, I am a windows xp home user and for awhile I have been thinking about changing my OS, the only problem is that I don't know where to start. Is it called Unix or Linux? Are they the same thing? It's really confusing. I would really appreaciate some help on this. I have looked all... (1 Reply)
Discussion started by: Mr_Pinky
1 Replies

4. Programming

Getting an ACK for RAW SYN packet

Hi, I'm trying to create a RAW TCP SYN packet and send it from one Linux machine to another. I know the packet I have created is well formed and is received by the peer. Now what I want is to get an ACK for my SYN. I want the peer's Network protocol stack to send me an ACK for that. I know... (17 Replies)
Discussion started by: zampya
17 Replies
Login or Register to Ask a Question

LEARN ABOUT POSIX

genworm

GENWORM(1)						      General Commands Manual							GENWORM(1)

NAME

       genworm - generate a RADIANCE description of a functional worm

SYNOPSIS

       genworm mat name 'x(t)' 'y(t)' 'z(t)' 'r(t)' nseg [ -e expr ][ -f file ]

DESCRIPTION

       Genworm	produces  a  RADIANCE  scene description of a worm defined by the parametric equations x(t), y(t), z(t), and r(t) (the radius).  T
       will vary from 0 to 1 in steps of 1/nseg.  The surface will be composed of nseg cones or cylinders and nseg+1 spheres.  The expressions are
       of the same type used in RADIANCE function files.  Auxiliary expressions and/or files may be specified in any number of -e and -f options.

EXAMPLE

       To generate a banana:

	 genworm yellow banana '0' '5*sin(t)' '5*cos(t)' '.4-(.5-t)*(.5-t)' 20

AUTHOR

       Greg Ward

BUGS

       Since  the worm is constructed of intersecting surfaces, only opaque materials should be used with this object.	Also, a worm cannot double
       back inside itself without making a mess.

SEE ALSO

       genrbox(1), genrev(1), gensurf(1), icalc(1), rpict(1), rvu(1), xform(1)

RADIANCE
							     11/15/93								GENWORM(1)