Welcome to the Virus Encyclopedia of Panda Security.
It opens several ports and connects to certain IP addresses, in order to receive remote P2P commands. It exploits the vulnerabilities LSASS and RPC DCOM, in order to spread to as many computers as possible, among other means of transmission.
|First detected on:||May 1, 2006|
|Detection updated on:||May 3, 2006|
Nugache.A is a worm that opens several ports and connects to a list of IP addresses, in order to receive remote P2P commands.
Nugache.A uses several different means to spread:
- Across the Internet by exploiting the vulnerabilities LSASS and RPC DCOM.
- Via the instant messaging program MSN Messenger.
- Via email.
It is highly recommendable to download the security patches for the vulnerabilities LSASS and RPC DCOM from the Microsoft website.
Nugache.A is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.