Kaspersky Threats

Class

Platform

Description

Technical Details

This virus spreads itself on documents opening and closing. On opening a
document the virus checks the system date. If day number is less than 3,
the virus hides mouse cursor and displays the message:



Created By Yusril Ihza Mahendra

PARTAI BULAN BINTANG

Another virus routine deletes all libraries (.DLL) files from Windows
system folder if day number is greater than 25. This routine is executed on
document opening, calling Visual Basic Editor and clicking “Tools/Macro”
menu.

The virus body contains the text strings:



Macros Pbb mungkin tidak bisa Anda hapus, Anda hanya bisa menghapus makro

buatan Anda (Descr: ‘Makro non-Pbb’)

Terimakasih Anda Telah

Memproteksi Word dengan Aman

Class	Virus
Platform	MSWord
Description	Technical Details This virus spreads itself on documents opening and closing. On opening a document the virus checks the system date. If day number is less than 3, the virus hides mouse cursor and displays the message: Created By Yusril Ihza Mahendra PARTAI BULAN BINTANG Another virus routine deletes all libraries (.DLL) files from Windows system folder if day number is greater than 25. This routine is executed on document opening, calling Visual Basic Editor and clicking “Tools/Macro” menu. The virus body contains the text strings: Macros Pbb mungkin tidak bisa Anda hapus, Anda hanya bisa menghapus makro buatan Anda (Descr: ‘Makro non-Pbb’) Terimakasih Anda Telah Memproteksi Word dengan Aman

Virus.MSWord.Pbb

Technical Details