1. Symantec/
  2. Security Response/
  3. W32.Netsky.V@mm


Risk Level 2: Low

April 14, 2004
February 13, 2007 12:21:25 PM
Also Known As:
W32/Netsky.v@MM [McAfee], WORM_NETSKY.V [Trend], W32/Netsky-V [Sophos], Win32.Netsky.V [Computer Assoc
Systems Affected:

W32.Netsky.V@mm is a mass-mailing worm that sends itself to the email addresses that it gathers from the files on the computer. This variant does not send an attachment with its email messages, but instead sends a link to an infected computer, attempting to download and run the worm's executable.

The From line of the email is spoofed, and the Subject line and message body vary.

The worm is packed with UPXSh!t v0.07, UPXSh!t v0.06, and UPX 1.24.

Antivirus Protection Dates

  • Initial Rapid Release version April 15, 2004
  • Latest Rapid Release version September 28, 2010 revision 054
  • Initial Daily Certified version April 15, 2004
  • Latest Daily Certified version September 28, 2010 revision 036
  • Initial Weekly Certified release date April 17, 2004
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Sergei Shevchenko

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube