| |
|
|
 |
 |
5870 West Jefferson Blvd., Suite A
Los Angeles, CA 90016
Tel: 310.815.8855
Fax: 310.815.8808
info@OnlineSecurity.com
© 2008 Online Security
All rights reserved.
|
|
|
Forum| Posted: 09/11/2002 | 9/11 Virus Information
| Original Source:
Author: Panda Software
Madrid, September 11 2002 -- In the last few hours two new viruses, VBS/Nedal ("Laden" backwards) and Chet (W32/Chet@MM), have appeared. These new worms use texts referring to the September 11 2001 attacks in New York to spread to as many computers as possible. In the last few days, and on the first anniversary of the attacks, Panda Software has been especially vigilant due to the possible proliferation of malicious code related to the tragic events of last year. In the light of these circumstances, we recommend that users treat all e-mails received with caution.
VBS/Nedal is a particularly destructive malicious code as it destroys the content of executables files. It spreads via mIRC, pIRCH and e-mail, sending itself out to every contact in the infected computer's Outlook Address Book. The message that carries the worm has the subject "Osama Bin Laden Comes Back!"
VBS/Nedal creates three files in the %windir% directory of the affected computer. The first file, called "Osama.EXE", is in fact a virus that infects files with an "EXE" extension (executable files), destroying their original content. The second file is named "Laden.EXE" and the third one"Alta.EXE". The last file has been designed to delete the contents of the "WindowsSystem" folder. VBS/Nedal also overwrites files with the following extensions: VBS, VBE, GIF, JPG, BMP, AVI, MP3, MPG, ZIP, CAB, MDB, XLS, LNK, DOC, TXT, RTF. Finally, the worm modifies the Windows Registry and displays messages on screen.
Chet (W32/Chet@MM), is a worm that reaches computers in a file - "11september.exe"- attached to an e-mail message with the subject "All people". This worm has been designed to spread massively via e-mail. However, a programming bug prevents it from sending itself out in the majority of cases.
Due to the possible appearance of new malicious codes related to the September 11 attacks such as W32/Vote or VBS/VBSWG.L, Panda Software advises users to treat all e-mails received with caution, even if they come from known sources, and update the antivirus solution installed on their computers. Panda Software has already made the corresponding update for its antivirus available to users.
This update can be downloaded from |
|
|
|
|
