|
|
 |
| YAHA.P Information |
|
|
| Threat Name: YAHA.P |
|
|
| This is a worm that propagates via email and over network shares and has a builtin SMTP engine that constructs mass mails. It can terminate specific processes that pose a threat to its presence.
The worm copies itself into the Win Systems folder as EXELOADER.EXE or MSTASK32.EXE. It also copies itself as a zipped file which goes by the name and extension TASKMGR32.DLL. Note that the .DLL extension is not real and its actually a ZIP archived file. |
More Information |
|
|
|
|
|
| |
|
|
|
| |
Scan for this threat |
|
|
|
|
|
|
WORM
A type of virus that does not need a host program. It has the ability to self-replicate and often will use email and the internet to spread.
|
|
|
|
3 Identified Patterns
|
|
|
|
|
|
