1. Symantec/
  2. Security Response/
  3. W32.Yaha.J@mm


Risk Level 2: Low

December 16, 2002
February 13, 2007 11:41:33 AM
Also Known As:
W32/Yaha.j [McAfee], W32/Yaha-j [Sophos]
Systems Affected:

W32.Yaha.J@mm is a mass- mailing worm that uses its own SMTP engine to send itself to email addresses that exist in the Windows Address Book, the MSN Messenger contact list, the Yahoo pager contacts list, the ICQ contacts list, and files that have extensions that contain the letters HT. The email message has the following characteristics:

Subject: The email has a random subject line.
<<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>>
This e-mail is never sent unsolicited. If you need to unsubscribe,
follow the instructions at the bottom of the message.

Enjoy this friendship Screen Saver and Check ur friends circle...

Send this screensaver from www.truefriends.net to everyone you
consider a FRIEND, even if it means sending it back to the person
who sent it to you. If it comes back to you, then you'll know you
have a circle of friends.

* To remove yourself from this mailing list, point your browser to:
* Enter your email address in the field provided and click "Unsubscribe".


* Reply to this message with the word "REMOVE" in the subject line.

<<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>> <<<>>>

Attachment: The attachment has a random file name with a double extension that is composed of .pdf, .gif, .ppt, .jpg, or .doc, followed by .scr.

This threat is written in the Microsoft C++ language and is compressed with UPX. The uncompressed size is about 75 KB.

Antivirus Protection Dates

  • Initial Rapid Release version December 16, 2002
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version December 16, 2002
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date December 18, 2002
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Yana Liu

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube