Recent Posts

Community

Email Notifications

Personal Links

Archives

Harry Waldron - IT Security

Security Developments, Software Updates and Best Practices

Storm Worm - April Fools version circulating

Lightning Folks should delete these messages and avoid selecting any links, malware can be automatically and silently installed on vulnerable PCs. 

Storm Worm - April Fools version circulating
http://isc.sans.org/diary.html?storyid=4222
http://www.avertlabs.com/research/blog/index.php/2008/03/31/nuwar-isnt-fooling-around/
http://sunbeltblog.blogspot.com/2008/03/heads-up-storm-worm-using-april-fools.html
http://blog.trendmicro.com/jokes-on-you/
http://www.f-secure.com/weblog/archives/00001410.html
http://asert.arbornetworks.com/2008/03/april-storms-day-campaign/

Storm QUOTE: Well, it's that time again. April Fools day tomorrow and prime time for those in control of the Storm botnet. Again a various list of subjects come with this release:

All Fools' Day
Doh! All's Fool.
Doh! April's Fool.
Gotcha!
Gotcha! All Fool!
Gotcha! April Fool!
Happy All Fool's Day.
Happy All Fools Day!
Happy All Fools!
Happy April Fool's Day.
Happy April Fools Day!
Happy Fools Day!
I am a Fool for your Love
Join the Laugh-A-Lot!
Just You
One who is sportively imposed upon by others on the first day of April
Surprise!
Surprise! The joke's on you.
Today You Can Officially Act Foolish
Today's Joke!

The download is a binary, also with varying names:

foolsday.exe
funny.exe
kickme.exe

Lightning While anti-virus protection was 18% at the time of the sample, this trend will improve as AV vendors respond to this new threat.

Storm Worm (Poor coverage by AV vendors of 18% at time of sample)
http://www.virustotal.com/analisis/4d97cff275c54b27495081c150afb4cd

Posted: Apr 01 2008, 04:11 PM by Harry Waldron | with 1 comment(s)

Comments

Microsoft news and tips » Storm Worm - April Fools version circulating said:

Pingback from  Microsoft news and tips » Storm Worm - April Fools version circulating

# April 13, 2008 1:18 AM