WORM_WURMARK.O

Malware type: Worm Aliases: No Alias Found In the wild: Yes Destructive: No Language: English Platform: Windows 98, ME, NT, 2000, XP Encrypted: No Characteristics: Propagates via email	Overall risk rating: Low Reported infections: Low Damage potential: High Distribution potential: High
Description: This memory-resident worm propagates via email. A copy of this worm disguises itself as an attachment to a spammed email with an attractive Subject line. Once an unsuspecting user opens the said attachment, this worm automatically executes on a system. The following image is a sample email message this worm sends out: This worm logs keystrokes in a randomly named .DLL file located in the Windows system folder. It also gathers the following system information: Drive information Operating system (OS) information User name and password of currently logged in user It then sends the information it gathers to the Web site www.melan{BLOCKED}rroll.biz/n2.php. For additional information about this threat, see: Solution Technical Details Statistics Source: trendmicro.com