Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Threats » W32/Yaha.M@mm

Overview

Threat Risk HIGH HIGH
Destructivity NONE NONE
Payload
Detection files published 21 Dec 2002 03:00:00
Description created 30 Dec 2002 01:47:00
Description updated 08 Jan 2003 01:48:00
Malware type WORM
Alias
Spreading mechanism EMAIL
Summary None

W32/Yaha.M@mm

Spreading

When first run the worm copies itself to Windows system directory with the names msnmsg32.exe and nav32.exe. It also changes a Registry key so that nav32.exe will be executed each time the PC is started.The worm sends itself to email addresses found in Windows Address Book on the infected PC.

Payload Details

n/a

Analysis

n/a

Removal

n/a


Last Updated: 12 Nov 2015 11:06:11