Author Topic: new brontok ? (Read 2708 times)

int2k · « **on:** December 02, 2005, 04:26:02 PM »

my lab is infected with this new virus
seems like brontok variant buat got different infection system
it create file in a folder with random name from the folder file/folder list
it icons is folder shortcut with size of 102 Kb
it also change the screen background to pluto picture

i already sent the sample to avast
anybody knows this virus and how to clean them ?

polonus · « **Reply #1 on:** December 02, 2005, 07:24:23 PM »

Hello int2k,

Here you read more about this worm:
http://www.sophos.com/virusinfo/analyses/w32brontokg.htm
l This program http://forum.misec.net/board/RulesetUpdates/1130334141
also has definitions for the Brontok, Rontokbro mail worm, it is a local malware from Indonesia.
Also people in Malaysia suffer from this mail worm now.

greets,

polonus

int2k · « **Reply #2 on:** December 03, 2005, 07:13:37 PM »

it got different file infector
too bad i forgot the filename
it resides in windows directory in dllcache and system32
i've tried scan it through virustotal but no virus is detected $:-\$

but i haven't try using latest avast update hope it already have a cleaner for this virus

Author Topic: new brontok ? (Read 2708 times)

int2k

new brontok ?

polonus

Re: new brontok ?

int2k

Re: new brontok ?