Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Threats » W32/Mimail.E@mm

Overview

Threat Risk MEDIUM MEDIUM
Destructivity MEDIUM MEDIUM
Payload Performs denial-of-service attack
Detection files published 31 Oct 2003 03:00:00
Description created 01 Nov 2003 06:35:00
Description updated 01 Nov 2003 02:15:00
Malware type WORM
Alias
Spreading mechanism EMAIL
Summary None

W32/Mimail.E@mm

Spreading

This worm is very similar to the Mimail.C email worm. When run, copy itself to the Windows directory and install itself in the registry: HKLM\Software\Microsoft\Windows\CurrentVersion\Run Cnfrm32 = [WINDIR]cnfrm.exe

Payload Details

Similar to the Mimail.C worm, this variant performs a denial-of-service attack.

Targets are:

www.spamcop.net
www.spamhaus.org
www.spews.org

Analysis

n/a

Removal

n/a


Last Updated: 12 Nov 2015 11:06:10