x
48h OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
SPECIAL OFFER
If you're already a customer of
our homeusers protection,
renew now with a 50% off
RENEW NOW
x
HALLOWEEN OFFER
take advantage of our
terrific discounts
BUY NOW AND GET A 50% OFF
x
CHRISTMAS OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 40% OFF
x
SPECIAL OFFER
Buy the best antivirus
at the best price
BUY NOW AND GET A 50% OFF
x
BLACKFRIDAY OFFER
Buy the best antivirus
at the best price
TODAY ONLY UP TO 70% OFF
x
CYBERMONDAY OFFER
Buy the best antivirus
at the best price
(Only for homeusers)
TODAY ONLY UP TO 70% OFF
Active Scan. Scan your PC free
Panda Protection

Virus Encyclopedia

Welcome to the Virus Encyclopedia of Panda Security.

Sasser.ftp

Threat LevelHigh threatDamageSevereDistributionNot widespread
Common name:Sasser.ftp
Technical name:W32/Sasser.ftp
Threat level:Medium
Alias:BAT_SASSER.A
Type:Worm
Effects:  

It is a detection of the script created by the worms Sasser in order to download themselves to the affected computer via FTP.

Affected platforms:

Windows XP/2000/NT

First detected on:May 11, 2004
Detection updated on:March 6, 2006
StatisticsNo
Proactive protection:
Yes, using TruPrevent Technologies

Brief Description 

    

Some variants of the Sasser worm, which include Sasser.A, Sasser.B, Sasser.C, Sasser.D, Sasser.E and Sasser.F, spread via the Internet by attacking random IP addresses. These variants attempt to exploit the LSASS vulnerability.

If they succeed in exploiting such vulnerability, they create and run the script CMD.FTP. This script downloads the worm via FTP.

Panda products detect this script as W32/Sasser.ftp.