Welcome to the Virus Encyclopedia of Panda Security.
It infects executable files (.exe). It may open a backdoor to try to access and control the infected computer and when runned it tries to connect to an IP adress in order to update itself. Additionally, it has rootkit functionalities in order to hide its files and make its detection more difficult.
|First detected on:||March 30, 2007|
|Detection updated on:||May 19, 2007|
|Yes, using TruPrevent Technologies
Grum.A is a worm that infects executable files (.exe). It may open a port to try to access and control the affected computer and when it is run, it tries to connect to an IP address in order to update itself.
Additionally, it has rootkit functionalities in order to hide its files and make its detection more difficult.
Grum.A reaches the computer in a false email message that contains a download of the new version of Internet Explorer. It can also reach the computer as a file downloaded from a malicious site.
Grum.A is easy to recognize because it reaches the computer in a spam mail containing the following image: