Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Threats » W32/MyLife.G@mm

Overview

Threat Risk LOW LOW
Destructivity MEDIUM MEDIUM
Payload File deletion and/or corruption
Detection files published 10 Apr 2002 03:00:00
Description created 10 Apr 2002 03:13:00
Description updated 10 Apr 2002 03:13:00
Malware type WORM
Alias
Spreading mechanism EMAIL
Summary None

W32/MyLife.G@mm

Spreading

This worm spreads to all users in the Outlook address book and to addresses in the MSN Messenger contact list.When it is first executed, it will display a small caricature and perform the email sending. In addition it will install itself in Registry so that it is started at bootup. A copy of the worm will be placed in the Windows System directory.

Payload Details

The worm has destructive payloads. It may overwrite files of type jpeg,rm,ram,mp3,mp2,doc,xls,ppt,htm,html,wav,php,gif,frm,zip,rar,mpg,mpeg,asp,txt,pdf,pps,mdb,rtf,vbs,js,dbx and avi with a small text.It may attempt to delete all files on C:, D:, E:, F:, G:, H: and I: drives.

Analysis

n/a

Removal

n/a


Last Updated: 12 Nov 2015 11:06:11