Apr10
10:02 am (UTC-7)   |   by Miray Lozada (Technical Communications)

Several variants from PE_VIRUT family are running amok. The very first PE_VIRUT was detected May last year. As of yesterday, four variants were reported to be in the wild with infection reports coming in from six different countries.


The new variants are not very different from the first PE_VIRUT. One and all target files with extensions .EXE and .SCR. All have backdoor capabilities. All variants are also capable of using different infection techniques that can either be appending, cavity, overwriting, or EPO (entry point obscuring).


Trend Micro detects these file infectors as PE_VIRUT.K, PE_VIRUT.H, PE_VIRUT.L, and PE_VIRUT.NS. All are already included in the latest pattern file.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Tuesday, April 10th, 2007 at 10:02 am and is filed under Uncategorized . Responses are closed, but you can trackback from your own site.



Comments are closed.


“Missile Wars and World War III”
First Proof-Of-Concept iPod virus


 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro
 



    		 
© Copyright 2009 Trend Micro Inc. All rights reserved. Legal Notice