Welcome to the Virus Encyclopedia of Panda Security.
It has no destructive effects and it spreads via email.
|Detection updated on:||July 26, 2002|
Frethem.R is a worm that has no destructive effects. It just spreads via email in a message with the attached files DECRYPT-PASSWORD.EXE and PASSWORD.TXT.
It is automatically activated when the email message is viewed through Outlook's Preview Pane. It does this by exploiting a vulnerability in Internet Explorer, which allows email attachments to be automatically run. This vulnerability exploit is known as Exploit/iFrame.
It is highly recommendable to download and install the latest cumulative security update for Internet Explorer from Microsoft's official website. Access the page referring security bulletins.
Frethem.R is easy to recognize, as it reaches the computer via email in a message with the following characteristics:
Re: Your password!
You can access
DO NOT SAVE
password to disk
use your mind
DECRYPT-PASSWORD.EXE and PASSWORD.TXT.