Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Threats » W32/Alcaul family

Overview

Threat Risk NONE NONE
Destructivity NONE NONE
Payload
Detection files published
Description created 21 Feb 2002 05:46:00
Description updated 21 Feb 2002 07:17:00
Malware type WORM
Alias Sysnom
Freetrips
Janis
Alcarys
Syra
Toget
SexSounds
Monkey
Black
Porman
Alcop
2002
Spreading mechanism EMAIL
Summary None

W32/Alcaul family

Spreading

Spreading is typically done via mail, using Outlook address book. Some variants also use mIRC to spread. Below are the most important statistics of the different variants listed. CT = Compile time as stated in the file header,S = Mail Subject, B = Mail body and A = Mail attachment.A variant):CT Jan 01 21:13:40 2002S Dating, Talking And Kissing...B Here's visual some tips for you... It will surely make your partner happier and wilder... View the included file...A nudepic.jpg.exeB variant: CT Jan 01 23:42:07 2002Rest Like AC variant:CT D:E:F:G:H:I:J:K:L:M:N:O:P:Q:R:S:T:U:V:W:X:Y:Z variant:CT Jan 26 20:27:55 2002Rest like AAA:AB:AC variant:CT Jan 26 20:14:57 2002S Black is beautifulB Black is beautiful... You don't believe me, do you?... Well, here's a proof... See for yourselfA BLACK.SCRAD variant:CT Jan 26 18:57:31 2002S Porno still sellsB Here's a screen saver containing a nude picture of Aria Giovanni... For your viewing pleasure..A PORNO.SCRAE variant:CT Jan 26 19:19:27 2002Rest like ADAF:AG:AH:AI variant:CT Jan 10 17:48:29 2002Rest like ACAJ:AK:AL:AM:AN:AO:AP:AQ:AR:AS:

Payload Details

n/a

Analysis

n/a

Removal

First Alcaul variant added to defs 16. Jan 2002. New variants are however released frequently.


Last Updated: 12 Nov 2015 11:06:11