Security Firm Sophos, is warning of a widespread malicious attack that poses as an invitation from Microsoft to download a beta version of Internet Explorer 7.0.
The emails, which claim to come from admin@microsoft.com and have the subject line "Internet Explorer 7 Downloads", display an image which invites users to download beta 2 of Internet Explorer 7. However, users who click on the image will download a file called ie7.0.exe which is infected by the W32/Grum-A worm.
"Worms like this are only succeeding in spreading because so many people have still not learnt to be suspicious of unsolicited emails, even if they claim to come from well-known companies like Microsoft," said Graham Cluley, senior technology consultant for Sophos. "The problem is that to the casual observer the email looks genuine, and the image displayed looks near-identical to the imagery that Microsoft is using on its website to promote Internet Explorer 7.0. Clicking on the image, however, doesn't download the real beta - but malicious code straight from the hackers."
The Grum worm is an appender virus which infects executable files referenced by Run keys in the Windows Registry. When run it copies itself to <Temp>winlogon.exe and makes changes to the Registry. It also edits the HOSTS file, injecting a thread into system.dll and attempts to patch the system files ntdll.dll and kernel32.dll.
Worm Poses as IE Beta Download
By: Sharon Khare
| Apr 01,2007
 |
 |
| Ads by Google | ||
There must be a source for the Grum worm other than the direct download. I was infected on Friday without opening such an email...and the infected computer is out of service. The logging on is impossible as the computer turns itself off again promptly before I can take any actions. I hope a solution will be found, as I am now using a borrowed computer while mine is out of service. 
Arthur Holt @ Apr 01,2007
LATEST NEWS
- Transcend Unveils 4GB Ultra-compact Flash Drive
- Facebook Could See a Standoff Over Scrabble
- Great Deal on Day of Defeat: Source
- Google Ventures Into Virtual Reality With 'Lively'
- DreamWorks Animation Goes From AMD to Intel Chips
- Credit Check Required to Buy iPhone 3G
- BlackBerry Thunder Media Player Pics Revealed
- Pioneer to Sell Blu-ray Disc Recorders
- Tata Indicom Offers Welcome Tunes Online
- mChek, redBus Launch Ticket Booking Via Mobiles
| Ads by Google | ||
RELATED
| Ads by Google |
Hot Searches & Keywords :
AMD
AOL
ATI
Adobe
Apple
Asus
Blackberry
Blizzard
Blu-Ray
Bluetooth
CES 2007
CES 2008
Canon
Capcom
China
Creative
DVD
Dell
E3 2007
EA
Electronic Arts
Gears of War
Google
HP
Halo
IBM
ITunes
Intel
Internet
Ipod
LCD
LG
Linux
Logitech
Microsoft
Mobile
Mobile Phone
Mobile Phones
Motorola
Mp3
Myspace
Nintendo
Nokia
Nvidia
PC
PMP
PS2
PS3
PSP
Philips
Reliance Communications
Samsung
Sandisk
Search Engine
Skype
Smartphone
Sony
Sony Ericsson
Toshiba
Ubisoft
Valve
Vista
Voip
Website
Wi-Fi
Wii
Windows
Windows Mobile
Windows Vista
Xbox
Xbox 360
Xbox Live
Xbox360
Yahoo!
Youtube
Zune
digicam
digital camera
iPhone
mp3 player
printer
social networking site
test
yahoo
| Ads by Google | ||
|
|
Sections
Products
Camcorders |
Controllers |
CPUs |
Desktop PCs |
Digital Cameras |
Digital Video Recorders |
DVD Players |
Games |
Gaming Consoles |
General |
GPS Systems |
Handhelds / PDAs |
Hard Drives |
Headphones & Headsets |
HiFi Audio Systems |
Home Theater Systems |
Input Devices |
Internet |
Laptops |
Low Level Components |
Mac Systems |
Mobile Phone Accessories |
Mobile Phones |
Monitors |
Motherboards |
MP3 / Audio Players |
Multi-Function Devices |
Networking |
Optical Drives |
PC Accessories |
PC Add-on Cards |
PC Cabinets |
PC Games |
Printers |
Projectors |
RAM Modules |
Scanners |
Software |
Speakers |
Telecom |
TVs |
Video Players |