1. Symantec/
  2. Security Response/
  3. W32.Trilisa.B@mm


Risk Level 2: Low

May 9, 2002
February 13, 2007 12:00:09 PM
Trojan Horse, Worm
Systems Affected:

W32.Trilisa.B@mm is a variant of W32.Trilisa@mm, and sends itself to all addresses in the Microsoft Outlook address book. The worm renames all files that are in the Windows or WINNT folder and that have the .exe or .scr file name extension to the extension .avp. It then copies itself as the original file name. For example, the worm will rename the clean Notepad.exe file as Notepad.avp. It will then copy itself as Notepad.exe.

NOTE: The worm cannot send itself to others through email because of a minor bug in the worm.

Antivirus Protection Dates

  • Initial Rapid Release version May 9, 2002
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version May 9, 2002
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date May 9, 2002
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Gor Nazaryan

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube