| Nomes comuns: |
Bagle.UV |
| Nomes técnicos: |
|
| Alias: |
|
| |
|
| Tipo: |
WORM |
| Tamanho: |
7168 Bytes |
| |
|
DETECTAÇÃO
|
| Número de observações: |
|
| Data da primeira observação: |
October 21, 2009 at 17:01 PM |
| Primeira observação do país em: |
|
| Última observação do país em: |
|
| |
|
|
Panda Cloud Antivirus Pro Edition
- Análise comportamental de processos em execução.
- Vacinação USB automática para proteger contra malwares de execução automática.
- Upgrades automáticos para novos recursos do produto (firewall, etc.) assim que são liberados.
- Suporte técnico multilíngue 24x7 Suporte VIP.
|
|
Brief Description Bagle.UV is a worm that spreads by copying itself, without infecting other files. - In the local network: it generates a large amount of network activity and consumes bandwidth.
It reduces the security level of the computer: it terminates processes belonging to security tools, such as antivirus programs and firewalls, leaving the computer defenseless against attacks from other malware; it changes system permissions, decreasing the security level. It uses stealth techniques to avoid being detected by the user: - It uses techniques included in its code to hide itself while it is active.
Bagle.UV uses the following propagation or distribution methods: - Exploiting vulnerabilities with the intervention of the user: exploiting vulnerabilities in file formats or applications. To exploit them successfully it needs the intervention of the user: opening files, viewing malicious web pages, reading emails, etc.
- Via Internet, exploiting remote vulnerabilities: attacking random IP addresses, in which it tries to insert a copy of itself by exploiting one or more vulnerabilities.
|
The main objective of Bagle.UV is to spread and affect other computers.
It avoids being detected by the user by using the following techniques:
- Techniques included in its code to hide its files, Windows Registry entries and processes while it is active.
It causes a loss of productivity in the local network to which the compromised computer belongs:
- It generates a large amount of network activity and consumes bandwidth.
It reduces the security level of the computer:
- It terminates processes belonging to security tools, such as antivirus programs and firewalls, leaving the computer defenseless against attacks from other malware.
- It changes system permissions, decreasing the security level.
Mais informações sobre Bagle.UV na Enciclopédia
Voltar