The Web    Google
7/20: Mydoom.L@mm a Mass-Mailing Worm

7/20: Mydoom.L@mm a Mass-Mailing Worm
July 20, 2004

The W32.Mydoom.L@mm mass-mailing worm peforms several functions. They include:

  • Uses its own SMTP engine to send itself to all the email addresses that it finds from an infected system.
    The email has an attachment with a .bat, .cmd, .com, .exe, .pif, or .scr extension.

  • Contains keylogging capabilities. The From field of the email is spoofed.
  • Acts as a backdoor on infected systems.
  • Is written in C++ and is packed with UPX.

    More information is at Symantec page.

  • 3/25: Backdoor.Nibu-J Runs Keylogger
  • 2/17: Rbot-WB Worm Has Trojan Functions
  • Single Network Identity: Holy Grail or Nightmare?
  • Sun, Partners Develop Security Appliances
  • 4/8: Mytob-AB Worm Comes as Attachment
  • MFPs ?An Overlooked Security Risk
  • Sender ID: Phishing Solution or Another Problem?
  • VeriSign Strengthens Secured Seal
  • Keeping Score of Identity Risks
  • AntiOnline Spotlight: Wireless Security
  • Virus Alert: Worm Uses Own SMTP Engine to Spread
  • Compare Security Camera Products