WORM_ANIG.A

By sm | October 9, 2006

This memory-resident worm propagates by dropping copies of itself in shared network drives.

It steals login information and saves the obtained data in a file, which can be retrieved by a remote user. Its keylogger component substitutes the standard Microsoft Graphical Identification and Authentication DLL (MSGINA.DLL) to carry out its information-stealing routine.

This worm has backdoor capabilities and is able to listen to TCP port 5190 and wait for remote commands.

It runs on Windows 95, 98, ME, NT, 2000 and XP.

Source

Stumble it! Sphere: Related Content

Topics: Security & Antivirus Talk |

Add to Netvibes Subscribe with Bloglines Small NewsSmall News Feed Subscribe to Small News:Get all the News In Small on your cell phone

« Senserely | Home | WORM_NYXEM.E »

Small-News Widgets

Download the Small-News.com Yahoo Widget, and NEVER miss a Breaking News


Download
.Mac (Apple Computer, Inc.)

Quote of the Day

April 22, 2008

Men often hate each other because they fear each other; they fear each other because they don’t know each other; they don’t know each other because they can not communicate; they can not communicate because they are separated.Martin Luther King, Jr.



Comments are closed.


Tag: