1. Symantec/
  2. Security Response/
  3. W32.Mytob.DC@mm


Risk Level 2: Low

June 3, 2005
February 13, 2007 12:39:43 PM
Also Known As:
Win32.Mytob.{EW, FC} [Computer Associates], Net-Worm.Win32.Mytob.gen [Kasp, W32/Mytob.{ap, cm}@MM [McAfee], W32/Mytob-{BG, Fam} [Sophos], WORM_MYDOOM.GEN [Trend Micro], WORM_MYTOB.CW [Trend Micro]
Systems Affected:

W32.Mytob.DC@mm is a mass-mailing worm that has back door capabilities and uses its own SMTP engine to send email to addresses that it gathers from the compromised computer. The worm also spreads by exploiting the Microsoft Windows DCOM RPC Interface Buffer Overrun Vulnerability (described in Microsoft Security Bulletin MS03-026) and the Microsoft Windows Local Security Authority Service Remote Buffer Overflow (as described in Microsoft Security Bulletin MS04-011).

Antivirus Protection Dates

  • Initial Rapid Release version June 3, 2005
  • Latest Rapid Release version October 25, 2017 revision 035
  • Initial Daily Certified version June 3, 2005
  • Latest Daily Certified version October 26, 2017 revision 003
  • Initial Weekly Certified release date June 3, 2005
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.
Writeup By: Kaoru Hayashi

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
2016 Internet Security Threat Report, Volume 21
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube