Monday, March 17, 2003

Ganda (SwedenSux) Virus

Yet another mass mailing virus has been detected in the wild. Like others, it carries its own SMTP engine and grabs addresses out of the local Outlook address book. Side note: VE states that "initial analysis would also suggest that the sender's from: address is not spoofed."

By all appearances, this is another virus that's easily blocked by stripping executables at the gateway. As they've only captured 3 copies of the virus, analysis is still a bit thin. Read it here.

No comments:

Post a Comment