This virus is written in Visual Basic Script (VBS) language and encrypted (it is a VBE – Visual Basic encoded script). When activated, it searches for files with .html and .htm extensions and infects them by writing its code to the top of file.
The virus marks infected files with a “tag-mark” () and doesn’t infect them again.
The virus doesn’t contain any payload.
|Find out the statistics of the threats spreading in your region|