Welcome to the Virus Encyclopedia of Panda Security.
It infects files with a DOC or RTF, which belong to Word documents. It reduces the security level of the computer, as it ends processes belonging to security-related programs. It disables several functions of the Start menu, such as Run, and applications such as the Windows Registry Editor, among other actions. It reaches the computer in a file that passes itself off as a Word document.
|First detected on:||Oct. 8, 2007|
|Detection updated on:||Oct. 29, 2007|
|Yes, using TruPrevent Technologies
DarkAngel.C is a worm with virus characteristics that infects files with a DOC or RTF extension, which belong to Word documents. This way, whenever a Word document is run, besides the document itself, DarkAngel.C is run.
Additionally, it reduces the security level of the computer, leaving it vulnerable against the attack of threats. In order to do so, it ends processes belonging to security-related programs, such as antivirus or firewalls.
On the other hand, it carries out several modifications in the Windows Registry, which prevent the user from carrying out the following actions, among others:
- Running files in a fast and straight way, as it disables the options Search and Run from the Start menu.
- Modifying the configuration of the features of the folders.
DarkAngel.C reaches the computer in a file that passes itself off as a Word document. In order to spread, it uses the following means:
- an email message with an attached file.
- by distributing previously infected files.
- via mapped and removable drives.
DarkAngel.C is difficult to recognize, as it does not display any messages or warnings that indicate it has reached the computer.