Welcome to the Virus Encyclopedia of Panda Security.
It infects executable files (with an EXE and SCR extension) and files with an ASP, HTM and PHP extension, in order to download more malware to the affected computer. It reaches the computer by distributing the previously infected files.
|First detected on:||Feb. 5, 2009|
|Detection updated on:||March 9, 2010|
|Yes, using TruPrevent Technologies
Sality.AO is a virus which infects the files with an EXE and SCR extension it finds in the affected computer.
Additionally, it infects files with an ASP, HTM and PHP extension by using a script that allows it to download more malware to the affected computer.
Sality.AOinfects executable files with an EXE and SCR extension, and files with an ASP, HTM and PHP extension, which are then distributed through any of the usual means: floppy disks, email messages with attachments, Internet download, files transferred via FTP, IRC channels, P2P file sharing networks, etc.
Sality.AO is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.>