R E L A T E D   C O N T E N T
Similar articles
KnowledgeBANK
News centre
More from vnunet.com
ADVERTISEMENT

Security experts intercept Zhelatin mutant

Zhetlatin.o malware rated as 'moderate' risk

Robert Jaques, vnunet.com 06 Feb 2007
ADVERTISEMENT

Security experts at Kaspersky Lab have identified a new mutant of the Zhelatin email worm.

Zhelatin.o was identified by the company on 4 February and is rated as a 'moderate' risk.

The worm spreads via email as an infected attachment. The subject line, message body and attachment are variable.

Zhelatin.o is a portable executable file packed with UPX. The worm copies itself to the hard disk and modifies the registry to ensure that it loads automatically on start up.

It then harvests email addresses from the hard disk and automatically sends itself via email by directly connecting to the recipient's SMTP server.

The malware also terminates a range of antivirus and firewall applications, and hides its own processes, files and registry changes using a kernel-mode rootkit.

David Emm, senior technology consultant at Kaspersky Lab, said: "This is the latest in a series of Zhelatin variants.

"Like many email worms, it uses social engineering in an attempt to lure users into double clicking on the infected attachment."

Removal guidelines can be found at Viruslist.com.


All Enterprise Security Technology

Like this story? Spread the news by clicking below:

Post this to Delicious del.icio.us    Post this to Digg Digg this    Post this to reddit reddit!

Permalink for this story

M A R K E T P L A C E
Sponsored links
F E A T U R E D   J O B S
C#, GUI Developer – Fixed Income – Investment Bank
| Aston Carter
C#, GUI Developer – Fixed Income – Investment Bank. My client is seeking a strong C# ASP.Net developer to join their Fixed Income area and operate within one of the top tier investment banks in ... more >
Technical Project Manager / SDLC West London, £75k
| Computer People
Technical Project Manager / SDLC West London, £75k - (Software Development, SDLC), RUP Serious opportunity for hands on Technical Project Manager to join a leading blue chip organisation based in an easily accessible area of ... more >
C# Developer
| Computer People
C# Developer - Nottingham 4 Month Contract Market Rates I have an exciting opportunity for a C# ASP.NETDeveloper working for an established client within Computer People. Working from their offices in Nottingham you’ll be providing ... more >
International Assignment / Global Mobility / Expatriate Tax Manager - In-house Opportunity
| JAM Recruitment
Job Ref: AS/20356/TAX Package: c£60,000.00 + Bonus + Benefits Location: Middlesex Job type: International Assignment / Global Mobility / Expatriate Tax Manager Position type: Permanent Hours: Full-time Contact name: Andy Shaw Contact Company: JAM Mobility ... more >
More job opportunities
Accountancy Age
Active Home
Best Practice
Computeractive
Computing
Computing Business
CRN
Financial Director
Infomatics
Information World Review
IT Week
Management Consultancy
Network IT Week
Personal Computer World
PC Magazine
VNU Web seminars
vnunet.com
Webactive
What PC?
Useful links: About vnu network | Privacy policy | Terms & conditions
Access keys | Top of page | Feedback
VNU Business Publications
© 1995-2008 All rights reserved
VNU Business Publications Ltd., 32-34 Broadwick Street, London, W1A 2HG, is a company registered in England and Wales with company number 01513633
part of part of vnu.net europe