1. Symantec/
  2. Security Response/
  3. VBS.Trappy@mm


Risk Level 1: Very Low

September 7, 2001
February 13, 2007 11:50:08 AM

VBS.Trappy@mm is a Visual Basic Script (VBS) worm. It infects .htm, .plg, .asp, and .vbs files. It replicates using MAPI objects to spread itself as an attachment.

The worm exploits a known Microsoft Outlook Express security hole so that the worm is executed without having to run any attachment. Microsoft has patched this security hole to eliminate security vulnerabilities in "Scriptlet.TypLib" ActiveX controls. The patch is available at:


Antivirus Protection Dates

  • Initial Rapid Release version September 7, 2001
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version September 7, 2001
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date pending
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Serghei Sevcenco

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube