-
Discovered:
- September 3, 2004
-
Updated:
- February 13, 2007 12:27:06 PM
-
Also Known As:
- Win32.Mydoom.T [Computer Assoc, MyDoom.T [F-Secure], Email-Worm.Win32.Mydoom.r [Kas, W32/Mydoom.t@MM [McAfee], W32/Mydoom-T [Sophos], WORM_MYDOOM.T [Trend Micro]
-
Type:
- Worm
-
Systems Affected:
- Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
W32.Mydoom.R@mm is a mass-mailing worm that uses its own SMTP engine to send itself to the email addresses that it finds on an infected computer. The email contains a spoofed From address. The subject and message body vary, and the attachment has a .bat, .cmd, .exe, .pif, .scr, or .zip extension.
This threat is packed using UPX.
Antivirus Protection Dates
-
Initial Rapid Release version September 4, 2004
-
Latest Rapid Release version March 13, 2012 revision 016
-
Initial Daily Certified version September 4, 2004
-
Latest Daily Certified version March 13, 2012 revision 020
-
Initial Weekly Certified release date September 8, 2004
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Moderate
Writeup By: Kevin Ha
