Class | Email-Worm |
Platform | JS |
Description |
Technical DetailsNevezed is a worm virus spreading via Microsoft Outlook. The worm itself is a Java Script file about 4KB in size and written in Java. Installation During installation the worm copies itself to the Windows system StartUp directory under the name “StartUp.js” and the Windows System directory under the name “CmdWsh32.js”. It them registers this later file in the system registry as a java-class file. The worm also creates a backup copy of itself in the root directory of other drives. Spreading: Email Infected messages sent by the worm have various subject titles. Possible subject titles could be:
Message body text is as follows:
Infected messages contain one of following attachments:
|