1. Symantec/
  2. Security Response/
  3. VBS.Funny.A


Risk Level 2: Low

September 18, 2000
February 13, 2007 11:33:32 AM
Also Known As:

VBS.Funny.A is a worm that spreads using Microsoft Outlook. When executed, the worm opens your Web browser and attempts to connect to the following Web site:


(Visiting this location does not damage your computer.) The worm then checks for the existence of a registry key used by the United Bank of Switzerland's PIN software. If the key exists, the worm creates an executable file. This file is a Trojan horse. It logs cached passwords and keyboard input. The Trojan horse is detected as Infostealer.

NOTE: This worm was previously detected as VBS.NewLove.A.

Antivirus Protection Dates

  • Initial Rapid Release version September 18, 2000
  • Latest Rapid Release version August 20, 2008 revision 017
  • Initial Daily Certified version September 18, 2000
  • Latest Daily Certified version August 20, 2008 revision 016
  • Initial Weekly Certified release date pending
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Neal Hindocha

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube