Discovered: May 4, 2004
Updated: February 13, 2007 12:22:40 PM
Type: Trojan Horse
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
W32.Netad.Trojan is a Trojan horse that attempts to delete all the files on the C: drive.
This Trojan is written in the Delphi programming language.
In file properties, the following details are visible:
- Company Name: Windows (c) Corp.
- Internal Name: Windows Service Datenbank Management System
- Language: German (Germany)
- Legal Trademarks: Windows (c)
- Filename: ws32.dbms.exe
- Product Name: Windows Service Datenbank Management System
- Product Version: 1.0.0.0
Some possible methods of distribution for this Trojan could be:
- Placed on public FTP sites
- Peer-to-peer file-sharing networks
- Spammed as attachments in email
The file could be named anything and the name could depend on the distribution method. There is no static filename associated with this particular threat.
Protection
-
Initial Rapid Release version May 4, 2004
-
Latest Rapid Release version May 4, 2004
-
Initial Daily Certified version May 4, 2004
-
Latest Daily Certified version January 15, 2008 revision 016
-
Initial Weekly Certified release date May 5, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
Distribution
Writeup By: Rodney Andres
