Heads up: new virus is mucking about. [Archive] - Fly Fishing Forum

: Heads up: new virus is mucking about.


fredaevans
01-27-2004, 10:58 AM
From our Bank's IT staff this morning.

As you may know, a new virus was discovered yesterday.
It propagates through email, and arrives with the following characteristics -
================================================== ==
From: (spoofed email sender)
Subject: (Varies, such as)

Error
Status
Server Report
Mail Transaction Failed
Mail Delivery System
hello
hi

Body: (Varies, such as)

The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary attachment.
The message contains Unicode characters and has been sent as a binary attachment.
Mail transaction failed. Partial message is available.

Attachment: (varies [.bat, .exe, .pif, .cmd, .scr] - often arrives in a ZIP archive) (22,528 bytes)

examples (common names, but can be random)
doc.bat
document.zip
message.zip
readme.zip
text.pif
hello.cmd
body.scr
test.htm.pif
data.txt.exe
file.scr
================================================== ==
If you receive this msg in your Inbox, deleted it, and call the Help Desk at 1-877 xxx xxxx to notify us.

As always, you should never open any suspicious email msgs, even if you know who the sender is. And especially do not open the attachment if one is included.

If a suspicious email msg looks like something that may indeed be related to xxxx Bank business, you should contact the sender before opening it, to confirm that he/she did in fact send it.

Our network system has be updated with the latest Anti-virus software. The virus described above may still appear in your Inbox, but will have been disinfected. Never-the-less, please contact the Help Desk if this occurs.

removed_by_request
01-27-2004, 01:36 PM
It has been an all day challenge, thanks to Trend our e-mail is squeaky clean.:smokin:

Whiskey Dick
01-27-2004, 08:16 PM
HEy Fred, when i logged in this morning i had every one on your list waiting for me,
"Subject: (Varies, such as)
Error
Status
Server Report
Mail Transaction Failed
Mail Delivery System
hello
hi

Body: (Varies, such as)

The message cannot be represented in 7-bit ASCII encoding and has been sent as a binary attachment.
The message contains Unicode characters and has been sent as a binary attachment.
Mail transaction failed. Partial message is available.

Attachment: (varies [.bat, .exe, .pif, .cmd, .scr] - often arrives in a ZIP archive) (22,528 bytes)

examples (common names, but can be random)
doc.bat
document.zip
message.zip
readme.zip
text.pif
hello.cmd
body.scr
test.htm.pif
data.txt.exe
file.scr "

Deleted them all,thanks to McAfee
tight lines,brian

juro
01-28-2004, 03:40 PM
More information on mydoom...

http://us.mcafee.com/virusInfo/default.asp?id=helpCenter&hcName=mydoom&cid=9547

The thing to remember is that the infected emails are not from the address they say they are from. Instead the infected party has someone's address in their address book and the virus masquerades as if coming from those addresses :mad:

Furthermore, if you don't have a firewall you could be in for some real trouble!

fredaevans
01-28-2004, 04:57 PM
had at least 6 of these in my 'in basket' at home. Wonder what peeking tonight will "(un)-ravel?"
:whoa: