Discovered: May 7, 2008
Updated: May 8, 2008 11:02:13 AM
Also Known As: JS/Downloader-AUE [McAfee]
Type: Trojan, Virus
Infection Length: 28,301 and 38,400 bytes
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows Vista, Windows XP
W32.Wowinzi.A is a worm that spreads by copying itself to mapped, fixed and removable drives on the compromised computer. It may also steal information and download potentially malicious code.
Protection
-
Initial Rapid Release version May 7, 2008 revision 016
-
Latest Rapid Release version August 20, 2008 revision 017
-
Initial Daily Certified version May 7, 2008 revision 020
-
Latest Daily Certified version January 20, 2009 revision 048
-
Initial Weekly Certified release date May 14, 2008
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
-
Damage Level: Low
-
Payload: Drops additional malware on to the compromised computer.
-
Deletes Files: Deletes %System%\verclsid.exe.
-
Modifies Files: It modifies files.
-
Releases Confidential Info: Steals and sends confidential information.
Distribution
-
Distribution Level: Low
-
Shared Drives: Spreads through mapped, fixed drives removable drives
Writeup By: John Canavan
Technorati
Digg
Delicious
Reddit
StumbleUpon
Yahoo Buzz
Twitter
Facebook
Newsvine
