Welcome to the Virus Encyclopedia of Panda Security.
It leaves the computer vulnerable against the attack of other malware. It downloads malicious files from several websites. It infects files with an EXE and SCR extension, which are then distributed through any of the usual means.
|First detected on:||July 18, 2008|
|Detection updated on:||Aug. 7, 2008|
|Yes, using TruPrevent Technologies
Sality.AG is a worm which infects files with an EXE and SCR extension.
It reduces the security level of the computer, as it ends services and processes belonging to security programs. This would leave the computer vulnerable against the attack of other threats.
Additionally, it connects to several websites to download more malware and uses a rootkit to prevent the users from accessing several websites that belong to antivirus companies.
Sality.AG infects files with an EXE and SCR extension, which are then distributed through any of the usual means: floppy disks, email messages with attachments, Internet download, files transferred via FTP, IRC channels, P2P file sharing networks, etc.
Sality.AG is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.