Worm - Update-KB9359-x86

Do you have a question? Post it now! No Registration Necessary.  Now with pictures!

Threaded View
This e-mail with the above attachment is doing the rounds. It doesnt get
picked up in a virus/spyware scan - any clues?

Subject: Mail server report.

Mail server report.

Our firewall determined the e-mails containing worm copies are being sent
from your computer.

Nowadays it happens from many computers, because this is a new virus type
(Network Worms).



Using the new bug in the Windows, these viruses infect the computer
unnoticeably.

After the penetrating into the computer the virus harvests all the e-mail
addresses and sends the copies of itself to these e-mail addresses

Please install updates for worm elimination and your computer restoring.

Best regards,

Customers support service



Re: Worm - Update-KB9359-x86

Complete scanning result of "Update-KB9359-x86.exe", processed in VirusTotal
at 10/19/2006 08:32:41 (CET).

[ file data ]
* name: Update-KB9359-x86.exe
* size: 31236
* md5.: 7f405f8d83ee8555f44a9dc757f84bd4
* sha1: 5787b138fb7a7a362b9af3cc9d27e1d2cab1caaa

[ scan result ]
 AntiVir 7.2.0.30/20061019 found [Worm/Marmota.B]
Authentium 4.93.8/20061019 found [W32/Downloader.AHQM]
Avast 4.7.892.0/20061018 found nothing
AVG 386/20061018 found nothing
BitDefender 7.2/20061019 found [Trojan.Downloader.AOW]
CAT-QuickHeal 8.00/20061019 found nothing
ClamAV devel-20060426/20061019 found [Trojan.Small-377]
DrWeb 4.33/20061019 found [Win32.HLLM.Limar]
eTrust-InoculateIT 23.73.28/20061019 found nothing
eTrust-Vet 30.3.3141/20061018 found nothing
Ewido 4.0/20061018 found nothing
F-Prot 3.16f/20061019 found [security risk named W32/Downloader.AHQM]
F-Prot4 4.2.1.29/20061019 found [W32/Downloader.AHQM]
Fortinet 2.82.0.0/20061019 found nothing
Ikarus 0.2.65.0/20061019 found [Email-Worm.Win32.Warezov.dc]
Kaspersky 4.0.2.24/20061019 found [Email-Worm.Win32.Warezov.dc]
McAfee 4876/20061018 found nothing
Microsoft 1.1603 /20061019 found nothing
NOD32v2 1.1811/20061019 found nothing
Norman 5.80.02/20061018 found nothing
Sophos 4.10.0/20061015 found nothing
TheHacker 6.0.1.101/20061019 found [W32/Warezov.dc]
UNA 1.83/20061018 found nothing
VBA32 3.11.1/20061018 found nothing
VirusBuster 4.3.7:9/20061019 found [Trojan.DL.Agent.QLU]

[ notes ]
packers: UPX

__________________________________________________
VirusTotal is a free service offered by Hispasec Sistemas. There are no
guarantees about the availability and continuity of this service. Do not
reply to this message. It has been generated by an automatic address that
will not handle any reply. Although the detection rate afforded by the use
of multiple antivirus engines is far superior to that offered by just one
product, these results DO NOT guarantee the harmlessness of a file.
Currently, there is not any solution that offers a 100% effectiveness rate
for detecting viruses and malware.



Re: Worm - Update-KB9359-x86

http://www.viruslist.com/en/viruses/encyclopedia?virusid=137096



Site Timeline