MUMBAI: CA , IT management software companies, announced that it has launched a patch to detect and cure a new computer worm, Blackworm virus called KamaSutra, which was scheduled to attack today.
The worm, also known as Nyxem-D and W32.blackmail.e, is aimed at Windows-based computers and spreads by copying itself to shared network locations and mass emailing itself to email addresses on these systems.
Though potentially quite damaging to a system, large scale infection of the
worm is not expected and the current over-reaction by many members of the
anti-virus community is unwarranted.
Kama Sutra worm is designed to overwrite all .doc, .xls, .mdb, .mde, .ppt,
.pps, .zip, .rar, .pdf, .psd, and .dmp files. It has gained the attention
of the anti-virus community because of its ability to deceive Windows
through phony digital signatures, and seems to have been created for the
sole purpose of doing damage and not for commercial gain. It has also
gained attention in both the general and technology press due to a unique
Website that supposedly shows a running counter of infected computers, as
well as its reliance on sexually suggestive emails which spread the virus.
This virus is also known as W32.Blackmal.E@mm (Symantec), Win32.Blackmal.F,
Win32/Blackmal.F!Worm, Win32/Cabinet!Worm, CME-24, WORM_GREW.A (Trend),
W32/Mywife.d@MM (McAfee), W32/Nyxem.E (F-Secure), W32/Nyxem-D (Sophos),
W32/Tearec.A.worm (Panda), Email-worm.Win32.Nyxem.e (Kaspersky)
CA has published a signature to detect and cure via the following signature
updates. eTrust Antivirus 6x/v7* (InoculateIT Engine)- 23.71.52; eTrust Antivirus 6x/v7* (Vet Engine) - 11.x/9615; eTrust Antivirus 6x/v7* (Vet Engine) - 12.4x/2046;
eTrust EZ Antivirus 6.2x - 6.2x/9615; eTrust EZ Antivirus 6.3x - 6.3x/9615; eTrust EZ Antivirus 6.4x - 6.4x/9615; eTrust EZ Antivirus 7.x - 7.x/9615; Vet Anti-Virus 10.6x - 10.6x/9615.
CyberMedia News