Welcome to the Virus Encyclopedia of Panda Security.
|Effects: ||It creates two files that act as keyloggers, attempts to obtain software keys and allows a hacker to gain remote access to the affected computer.|
|Detection updated on:||Jan. 26, 2004|
|Yes, using TruPrevent Technologies
|Country of origin:||RUSSIA|
Dumaru.Y is a worm that spreads via e-mail in a message with the subject Important information for you. Read it immediatly ! and an attached file called MYPHOTO.ZIP.
Dumaru.Y creates two files that act as keyloggers. One of them logs the keystrokes entered when the user accesses certain web pages belonging to electronic banking, while the other logs the information that the user copies to the Windows Clipboard. The worm sends these files via e-mail to its author.
Dumaru.Y allows a hacker to gain remote access to the computer, as it listens to several TCP ports.
In addition, Dumaru.Y also attempts to obtain the software keys of the programs that are installed on the affected computer.
Dumaru.Y is easy to recognize, as it reaches the computer in an e-mail message with the subject Important information for you. Read it immediatly ! and an attached file called MYPHOTO.ZIP.