| Nomi comuni malware: |
Bagle.UV |
| Nomi tecnici malware: |
|
| Alias: |
|
| |
|
| Tipo: |
WORM |
| Dimensione: |
7168 Bytes |
| |
|
RILEVAMENTI
|
| Numero di avvistamenti: |
|
| Data del primo avvistamento: |
October 21, 2009 at 17:01 PM |
| Paese del primo avvistamento: |
|
| Paese dell'ultimo avvistamento: |
|
| |
|
|
Panda Cloud Antivirus Pro Edition
- Analisi comportamentale dei processi in esecuzione.
- Vaccinazione USB automatica per la protezione dall'esecuzione automatica di malware.
- Aggiornamenti automatici per le nuove caratteristiche del prodotto (firewall e così via) non appena rilasciati.
- Supporto tecnico multilingue VIP 24 ore al giorno, 7 giorni su 7.
|
|
Brief Description Bagle.UV is a worm that spreads by copying itself, without infecting other files. - In the local network: it generates a large amount of network activity and consumes bandwidth.
It reduces the security level of the computer: it terminates processes belonging to security tools, such as antivirus programs and firewalls, leaving the computer defenseless against attacks from other malware; it changes system permissions, decreasing the security level. It uses stealth techniques to avoid being detected by the user: - It uses techniques included in its code to hide itself while it is active.
Bagle.UV uses the following propagation or distribution methods: - Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
- Via Internet, exploiting remote vulnerabilities: attacking random IP addresses, in which it tries to insert a copy of itself by exploiting one or more vulnerabilities.
|
The main objective of Bagle.UV is to spread and affect other computers.
It avoids being detected by the user by using the following techniques:
- Techniques included in its code to hide its files, Windows Registry entries and processes while it is active.
It causes a loss of productivity in the local network to which the compromised computer belongs:
- It generates a large amount of network activity and consumes bandwidth.
It reduces the security level of the computer:
- It terminates processes belonging to security tools, such as antivirus programs and firewalls, leaving the computer defenseless against attacks from other malware.
- It changes system permissions, decreasing the security level.
Ulteriori informazioni su Bagle.UV disponibili nell'Enciclopedia
Indietro