Welcome to the Virus Encyclopedia of Panda Security.
|Alias:||I love you, LoveLetter, Worm/LoveLetter, VBS/Loveletter.A, Barok|
It overwrites files in the affected computer and steals confidential user information.
|First detected on:|
|Detection updated on:||March 24, 2006|
|Repair utility:||Panda QuickRemover|
|Country of origin:||PHILIPPINES|
|Family:||LOVELETTER (I LOVE YOU)|
LoveLetter.A is a very dangerous and destructive worm that uses a so-called love letter in order to entice users into opening the file that contains it and therefore affect the computer.
LoveLetter.A overwrites the contents of all the files with a VBS, VBE, JS, JSE, CSS, WSH, SCT, HTA, JPG, JPEG, MP3 and MP2 extension.
In addition, it steals confidential information from the affected computer and sends it to the virus author. This could have particularly serious consequences for corporate networks.
LoveLetter.A spreads very rapidly by:
- Sending e-mail messages with an attachment called LOVE-LETTER-FOR-YOU.TXT.VBS, to all the contacts in the Address Book.
- Through IRC, automatically sending messages with the attachment LOVE-LETTER-FOR-YOU.HTM.
A clear indication that you have received LoveLetter.A is an e-mail with the following characteristics:
Another warning sign is a file called LOVE-LETTER-FOR-YOU.HTM sent through IRC.