SecurityHome.eu Win32.Nimda.E@mm

Home / malware PDF

Win32.Nimda.E@mm

First posted on 21 November 2011.
Source: BitDefender
Aliases :
Win32.Nimda.E@mm is also known as N/A.
Explanation :
This is a rebuilt variant of Win32.Nimda.A@mm containing some bug fixes and changes in files' names. The virus arrives as an attachment named sample.exe, copies as csrss.exe in the Windows directory. When it arrives through IIS servers using Unicode Web Traversal exploit exploit it copies under the name httpodbc.dll.

The author changed the virus declaration text contained in the virus to:
Concept Virus(CV) V.6, Copyright(C)2001, (This's CV, No Nimda.)
Last update 21 November 2011

TOP

Malware :

RATDispenser
whispergate
Borat RAT
Trojanized X_Trader
BlackLotus

Last 20