Virus Encyclopedia
Welcome to the Virus Encyclopedia of Panda Security.
Nuwar.DB | |
Threat Level Damage Distribution |
 |
Common name: | Nuwar.DB |
Technical name: | W32/Nuwar.DB.worm |
Threat level: | Medium |
Type: | Worm |
Effects: |
It spreads and affects other computers.
It affects the productivity of the computer, the network to which it’s connected or other remote sites.
It uses anti-monitoring techniques in order to prevent it being detected by antivirus companies.
It spreads
, via email.
|
Affected platforms:
|
Windows 2003/XP/2000/NT/ME/98/95 |
First detected on: | June 23, 2007 |
Detection updated on: | June 23, 2007 |
Statistics | No |
Proactive protection: | Yes, using TruPrevent Technologies
|
Brief Description | |
Nuwar.DB is a worm that spreads by copying itself, without infecting other files. It affects productivity, preventing tasks from being carried out: - In the affected computer:
causes system slowdowns.
- In the local network:
it generates a large amount of network activity and consumes bandwidth.
It uses several methods in order to avoid detection by antivirus companies: - It terminates its own execution if it detects that it is being executed in a virtual machine environment, such as VMWare or VirtualPC.
Nuwar.DB uses the following propagation or distribution methods: - Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
- Email: sending emails that include a copy of itself as an attachment. The computer is infected when the attachment is run.
|