Login or Register to Ask a Question and Join Our Community


Malware Advisories (RSS)

Worm_autorun.asa

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Malware Advisories (RSS) Worm_autorun.asa
# 1  
Old 05-23-2008
Worm_autorun.asa
This worm may be dropped by other malware. It may arrive via network shares. It may be downloaded unknowingly by a user when visiting malicious Web sites.
Upon execution, this worm drops a copy of itself. It then modifies registry entries to enable its automatic execution at every system startup. It also drops a copy of itself in the Windows Common Startup folder to enable its automatic execution at every system startup.
It employs registry shell spawning so that it executes when files of certain types are run. It does this by creating a registry entry under certain application names.
This worm drops copies of itself in network shares.
This worm sends messages that contain a link pointing to a remote copy of itself, using an instant messaging application.
This worm drops copies of itself in all physical and removable drives. It also drops an AUTORUN.INF file to automatically execute its dropped copies when the said drives are accessed.
It terminates certain processes containing specific strings. This worm modifies the Internet Explorer home page to point to a certain URL.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread

3 More Discussions You Might Find Interesting

1. IP Networking

Openswan with Cisco ASA

Hi all, I need this as soon as possible to solve it or at least to find out what is the problem. I have configured IPSec tunnels with Openswan and Cisco ASA, i have established a connection and the ping was fine, but after some time there is request time out from both sites. I don't have ASA... (0 Replies)
Discussion started by: ivancd
0 Replies

2. IP Networking

Cisco 3750 Switch ASA VPN Routing

Hi,I want connect my ASA 5510 firewall to a 3750 switch with RIP routing. Unfortunately,I am having issues passing the VPN subnet through rip to the 3750.I don't understand how the routing table is populated on the ASA. Any suggestions? (0 Replies)
Discussion started by: Ayaerlee
0 Replies

3. IP Networking

How to establish site to site vpn - Linux machine and cisco asa?

Hi, I am trying to establish vpn between my linux server and cisco asa at client side. I installed openswan on my cent os. Linux Server eth0 - 182.2.29.10 Gateway - 182.2.29.1 eth1 - 192.9.200.75 I have simple IPtables Like WAN="eth0" LAN="eth1" (0 Replies)
Discussion started by: ashokvpp
0 Replies
Login or Register to Ask a Question

LEARN ABOUT PHP

genworm

GENWORM(1)						      General Commands Manual							GENWORM(1)

NAME

       genworm - generate a RADIANCE description of a functional worm

SYNOPSIS

       genworm mat name 'x(t)' 'y(t)' 'z(t)' 'r(t)' nseg [ -e expr ][ -f file ]

DESCRIPTION

       Genworm	produces  a  RADIANCE  scene description of a worm defined by the parametric equations x(t), y(t), z(t), and r(t) (the radius).  T
       will vary from 0 to 1 in steps of 1/nseg.  The surface will be composed of nseg cones or cylinders and nseg+1 spheres.  The expressions are
       of the same type used in RADIANCE function files.  Auxiliary expressions and/or files may be specified in any number of -e and -f options.

EXAMPLE

       To generate a banana:

	 genworm yellow banana '0' '5*sin(t)' '5*cos(t)' '.4-(.5-t)*(.5-t)' 20

AUTHOR

       Greg Ward

BUGS

       Since  the worm is constructed of intersecting surfaces, only opaque materials should be used with this object.	Also, a worm cannot double
       back inside itself without making a mess.

SEE ALSO

       genrbox(1), genrev(1), gensurf(1), icalc(1), rpict(1), rvu(1), xform(1)

RADIANCE
							     11/15/93								GENWORM(1)