Login or Register to Ask a Question and Join Our Community


Malware Advisories (RSS)

Worm_autorun.app

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Malware Advisories (RSS) Worm_autorun.app
# 1  
Old 05-22-2008
Worm_autorun.app
This worm may be installed manually by a user. It may be downloaded unknowingly by a user when visiting malicious Web sites.
It drops copies of itself. It injects threads into normal processes.
It creates registry entries to enable its automatic execution at every system startup.
It creates registry key(s)/entry(ies) as part of its installation routine.
It drops copies of itself in all physical drives. It drops copies of itself in all removable drives. It drops an AUTORUN.INF file to automatically execute dropped copies when the drives are accessed.
It accesses Web sites to download file(s). As a result, malicious routines of the downloaded files are exhibited on the affected system. It then executes the downloaded files. As a result, malicious routines of the downloaded files are exhibited on the affected system.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

1 More Discussions You Might Find Interesting

1. Programming

Wuhan Coronavirus Status App for China - Rapid Prototype using MQTT and the IoT OnOff IOS App

With a little bit of work, was able to build a nice "Wuhan Coronavirus Status" app using MQTT and the IoT-OnOff app. More on this technique here: ESP32 (ESP-WROOM-32) as an MQTT Client Subscribed to Linux Server Load Average Messages The result turned out nice, I think. I like the look and... (10 Replies)
Discussion started by: Neo
10 Replies
Login or Register to Ask a Question

LEARN ABOUT OSX

mac::aete::app

Mac::AETE::App(3)					User Contributed Perl Documentation					 Mac::AETE::App(3)

NAME

       Mac::AETE::App - reads the Macintosh Apple event dictionary from an application.

SYNOPSIS

	    use Mac::AETE::App;
	    use Mac::AETE::Format::Dictionary;

	    $app = App->new("My Application");
	    $formatter = Dictionary->new;
	    $app->set_format($formatter);
	    $app->read;
	    $app->write;

DESCRIPTION

       The App module simplifies reading the Apple event dictionary from an application.  It will launch the application if necessary to obtain
       the dictionary.

       Methods

       new	 Example: ($name is the name of the application.)

		      use Mac::AETE::App;
		      use Mac::AETE::Format::Dictionary;

		      $app = App->new($aete_handle, $name);

       read	 (Inherited from Mac::AETE::Parser.)

		 Reads the data contained in the AETE resource or handle. Example:

		      $app->read;

       set_format
		 (Inherited from Mac::AETE::Parser.)

		 Sets the output formatter used during by the 'write' subroutine. Example:

		      $formatter = Dictionary->new;
		      $app->set_format($formatter);

       copy	 (Inherited from Mac::AETE::Parser.)

		 Copies all suites from one Parser object into another. Example:

		      $aete2 = Parser->new($aete_handle2, $another_name);
		      $app->copy($aete2);

		 copies the suites from $aete2 into $aete.

       merge	 (Inherited from Mac::AETE::Parser.)

		 Merges suites from one Parser object into another. Only the suites that exist in both objects will be replaced. Example:

		      $aete3 = Parser->new($aete_handle2, $another_name);
		      $app->merge($aete3);

       write	 (Inherited from Mac::AETE::Parser.)

		 Prints the contents of the AETE or AEUT resource using the current formatter.

		      $app->write;

INHERITANCE

       Inherits from Mac::AETE::Parser.

AUTHOR

       David Schooley <dcschooley@mediaone.net>

perl v5.10.0							    2005-05-16							 Mac::AETE::App(3)