Welcome to the Virus Encyclopedia of Panda Security.
It spreads and affects other computers.
|First detected on:||July 3, 2006|
|Detection updated on:||July 3, 2006|
|Yes, using TruPrevent Technologies
Nugache.D is a worm that spreads by copying itself, without infecting other files.
- In the local network:
it carries out denial of service attacks against
on the local network.
It reduces the security level of the computer:
it notifies the attacker that the computer has been compromised and is ready to be used maliciously; it opens one or more ports to allow remote access to the computer and takes action that compromises user confidentiality; it awaits remote-control orders received through
IRC, HTTP, or FTP.
Nugache.D uses the following propagation or distribution methods:
- Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
- Email: sending emails that include a copy of itself as an attachment. The computer is infected when the attachment is run.
- Instant messaging: it sends links pointing to a copy of itself to all users included in the infected user's contacts list.