1. /
  2. Security Response/
  3. JS.Coolsite@mm

JS.Coolsite@mm

Risk Level 2: Low

Discovered:
December 18, 2001
Updated:
February 13, 2007 11:54:13 AM
Also Known As:
JS.Exception.Exploit, JS/Coolsite@MM, W32/Cool.A-mm
Type:
Worm

JS.Coolsite@mm is a Java Script worm. If you are using Norton AntiVirus with definitions dated August 16, 2001 or later, you are already protected from this worm, which will be detected by those definitions as JS.Exception.Exploit.

Symantec Security Response has created a separate detection for this variant, and definitions dated December 19, 2001 or later will detect it as Coolsite@mm.

The worm arrives as an email with the subject "Hi!!" and the message "Hi. I found cool site!..."


Antivirus Protection Dates

  • Initial Rapid Release version December 19, 2001
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version December 19, 2001
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date pending
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment

Wild

  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy

Damage

  • Damage Level: Low

Distribution

  • Distribution Level: Medium
Writeup By: JP Duan

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver