Virus Encyclopedia
Welcome to the Virus Encyclopedia of Panda Security.
Koobface.IE | |
Threat Level Damage Distribution |
 |
| Common name: | Koobface.IE |
| Technical name: | W32/Koobface.IE.worm |
| Threat level: | Medium |
| Alias: | Net-Worm.Win32.Koobface.css, |
| Type: | Worm |
| Effects: |
It spreads and affects other computers.
It generates a large amount of network traffic activity with the consequent consumption of bandwidth.
It uses stealth techniques to avoid being detected by the user.
It spreads
, through instant messaging.
|
| Affected platforms:
|
Windows 2003/XP/2000/NT/ME/98/95 |
| First detected on: | Feb. 1, 2010 |
| Detection updated on: | Feb. 1, 2010 |
| Statistics | No |
Brief Description | |
Koobface.IE is a worm that spreads by copying itself, without infecting other files. - In the local network:
it generates a large amount of network activity and consumes bandwidth.
It uses stealth techniques to avoid being detected by the user: - It uses techniques included in its code to hide itself while it is active.
- It deletes the original file from which it was run once it is installed on the computer.
Koobface.IE uses the following propagation or distribution methods: - Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
- Instant messaging: it sends links pointing to a copy of itself to all users included in the infected user's contacts list.
|