Security Incidents mailing list archives
Re: Strange file I received
From: James Cox <james () IMAJES CO UK>
Date: Mon, 23 Oct 2000 21:34:33 +0100
----- Original Message ----- From: "Vince Vielhaber" <vev () MICHVHF COM>
I received the attached file from someone immediately after receiving a note from them. The only difference is I gzipped it so hopefully noone's mailer takes off and runs whatever it is. Just looking at the text of it it looks to be another virus/trojan. I don't recall seeing this filename on any of the lists either and this one came withoout a subject.
Yeah, this one seems to be a virus, called I-Worm.MTX originating from http://www.coderz.net/matrix/ . I quote from http://www.viruslist.com/eng/viruslist.asp?id=4063&key=00001000130000100034 : This is a virus-worm spreading under Win32 systems. The virus infects Win32 executable files, attempts to send e-mail messages with infected attached files, as well as installs a backdoor component to download and spawn "plugins" on an affected system. The virus has an unusual structure. It consists of three different components that are run as stand-alone programs (Virus, e-mail Worm and Backdoor). The virus is the main component, and it keeps the worm and backdoor programs in its code in compressed form. While infecting the system, the virus extracts and spawns them... It continues. Another backdoor - better tell the person you got it from! Thanks, James Cox.
Current thread:
- Strange file I received Vince Vielhaber (Oct 24)
- Re: Strange file I received Elias Levy (Oct 24)
- Re: Strange file I received James Cox (Oct 25)
- <Possible follow-ups>
- Re: Strange file I received Tomo Radovanovic (Oct 25)