Valentine's Day storm warning

By Staff Writers on Jan 16, 2008 3:26PM
Valentine's Day storm warning
Anti-virus vendor, PC Tools has identified a storm worm that is taking advantage of Valentine’s Day.

The worm is delivered in an email dubbed “withlove.exe” and other Valentine’s Day themed executable names as attachments for email messages with subjects such as; “I would dream”; and “Memories of you”.

According to PC Tools, the worm delivers rootkits and maintains control of a system via peer-to-peer communications (p2p), potentially making compromised systems a tool in identity theft and financial loss.

The storm worm delivers an email with an affectionate statement, inviting the user to visit a hyperlink containing an IP address. The destination website will attempt to exploit the visitor’s system, and if it can’t, the page provides a download link for the executable file.

PC Tools’ chief threat officer, Kurt Baumgartner, said that the 2008 campaign resembles the 2007 Valentine’s Day storm campaign that pushed romantic subject lines such as “Sending you my love” and “You’re the one”, but with a Mexican twist for its dropped components.

“Interestingly, we witnessed a variant of the worm dropping files like 'burito.ini' and 'burito5e84-1216.sys' before killing anti-virus products and adding the victim’s computer to its botnet,” said Baumgartner. “The ini file maintains a list of p2p peer information for maintaining communication throughout the botnet, while the sys file is a driver that injects code deep into the operating system.”
Got a news tip for our journalists? Share it with us anonymously here.
Tags:
antivirus pc security

Partner Content

Shared Intelligence is the Real Competitive Edge Partners Enjoy with Crayon
Shared Intelligence is the Real Competitive Edge Partners Enjoy with Crayon
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
Beyond the box: How Crayon Is Redefining Distribution for the Next Era
How mandatory climate reporting is raising the bar for corporate leadership
How mandatory climate reporting is raising the bar for corporate leadership
How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
How Expert Support Can Help Partners and SMBs Realize the Full Value of AI
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro

Sponsored Whitepapers

Cut through the SASE confusion
Cut through the SASE confusion
Stay protected as cyber threats evolve
Stay protected as cyber threats evolve
Defend Your Network from the Next Generation of AI Threats
Defend Your Network from the Next Generation of AI Threats
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The changing face of Australian distribution
The changing face of Australian distribution

Events

Canalys Forum APAC 2025
Canalys Forum APAC 2025

Most read articles

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!

Save-the-dates for Pipeline 2026: We're levelling up to Hamilton Island in May!
Announcing the 2025 Benchmark Security Awards Partner finalists

Announcing the 2025 Benchmark Security Awards Partner finalists
The State of Channel Security

The State of Channel Security
Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told

Channel faces AI-fuelled risk as partners lag on data resilience, Dicker Data summit told

Log in

Email:
Password:
  |  Forgot your password?