Need help? Ask the community or hire an expert.
Go to Avira Answers
Virus:WORM/Gamarue.nouem
Date discovered:18/02/2013
Type:Worm
In the wild:No
Reported Infections:Low to medium
Distribution Potential:Low
Damage Potential:Low
File size:53760 Bytes
MD5 checksum:998cf98c09092615491c5fe75f4aed41
VDF version:7.11.61.158 - Monday, February 18, 2013
IVDF version:7.11.61.158 - Monday, February 18, 2013

 General Method of propagation:
   • No own spreading routine


Aliases:
   •  Bitdefender: Worm.Generic.422432
   •  AVG: Worm/Generic3.AKL
   •  Eset: Win32/Bundpil.B worm
   •  Norman: W32/Troj_Generic.HPOHC


Platforms / OS:
   • Windows 2000
   • Windows XP
   • Windows 2003
   • Windows Vista
   • Windows Server 2008
   • Windows 7


Side effects:
   • Can be used to execute malicious code

 Miscellaneous Event handler:
It creates the following Event handlers:
   • IsProcessorFeaturePresent
   • GetCurrentProcess
   • FlushFileBuffers
   • TerminateProcess
   • GetCommandLine
   • GetActiveWindow
   • GetConsoleMode
   • WriteConsole
   • ShellExecute
   • SetEndOfFile
   • GetFileType
   • WriteFile


String:
Furthermore it contains the following string:
   • dll_down_exec.dll

Description inserted by Wensin Lee on Sunday, March 10, 2013
Description updated by Wensin Lee on Monday, March 11, 2013

Back . . . .