1. Symantec/
  2. Security Response/
  3. W32.Amani@mm

W32.Amani@mm

Discovered:
October 30, 2002
Updated:
February 13, 2007 11:49:01 AM
Type:
Worm
Systems Affected:
Windows
CVE References:
CVE-2001-0154


W32.Amani@mm is a mass-mailing worm that uses its own SMTP engine to send itself to all contacts in the Windows Address Book. The email message has the following characteristics:

Subject: The subject line is one of the following,
  • - Alert!
  • - Happy!
  • - Important !
  • - Thank you !
  • - Welcom!
  • - You only see.

Attachment: AntiMani.exe

When the worm arrives by email, it uses a MIME exploit that allows the worm to be executed when you read or preview the file. Information and a patch for this exploit are available at http://www.microsoft.com/technet/security/bulletin/MS01-020.asp.

Antivirus Protection Dates

  • Initial Rapid Release version October 30, 2002
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version October 30, 2002
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date October 30, 2002
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube