Re: [Full-Disclosure] AOL IM Worm
Date: Wed Feb 11 2004 - 14:22:28 EST
This made the rounds yesterday (briefly) on the Incidents lists:
http://archives.neohapsis.com/archives/incidents/2004-02/0027.html
Justin Baldini wrote:
> There appears to be an AOL IM worm going around.
>
> It's coming in as a link to here...
>
> http://www.wgutv.com/osama_capXXXture.php?nLRj
> (Without the XXX)
>
> When run, it appears to load up some fake game, installs a bunch of shit,
> and then sends itself to everyone on your IM list.
>
> Channelup.exe and blengine.exe appear to be the task list entries.
>
> Thats about all the info I have.
>
>
> ++++++++++++++
> Justin Baldini
> Network Admin
>
> _______________________________________________
> Full-Disclosure - We believe in it.
> Charter: http://lists.netsys.com/full-disclosure-charter.html
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Received on Wed Feb 11 15:40:01 2004
This archive was generated by hypermail 2.1.8 : Wed Feb 11 2004 - 16:01:03 EST
