[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Security Alert: The Gigger Worm



PureBytes Links

Trading Reference Links

This virus arrives as an email attachment or embedded JavaScript inside an email message. It tries to reformat your hard drive. To identify the GIGGER worm, the email header looks like this ...

Subject:    Outlook Express Update
Message Body:    MSNSofware Co.
Attachment:    MMSN_OFFLINE.HTM

The HTM file contains the worm. Among other things, GIGGER adds the line "ECHO y|format c:" to your AUTOEXEC.BAT file. Once this line has been added, if you reboot your computer, your hard drive will be formatted during the boot sequence without prompting you.

It attempts to propagate in several ways:

* e-mailing to all names in MS Outlook address book
* includes itself in all e-mails using ME Outlook Express
* sends itself using MS messaging program, MAPI
* spreads itself using mIRC chat clients
* copying itself over MS network shares

COUNTER-MEASURES

* Do not open unsolicited attachments
* Download anti-virus updates

For more information....

 http://vil.nai.com/vil/virusSummary.asp?virus_k=99301