- Jan 24, 2011
- 9,378
Microsoft this week used its Malicious Software Removal Tool to take out the fourth-biggest threat in automated program's history, which dates back to at least 2005.
The malware, known as Win32/Renocide, is a crafty backdoor-enabled worm that spreads through removable drives, network shares and popular file-sharing applications. Once installed, it drops copies of itself on all removable drives, possibly by randomizing the the file names. It also spreads by scanning machines on an infected computer's local network and pasting a copy of a file called autorun.inf, which many versions of Windows automatically execute when the drive is attached.
Renocide also plants copies of itself in shared folders of file-sharing applications and cleverly disguises them as titles of popular games and apps currently be shared on popular torrent sites.
More details - link
The malware, known as Win32/Renocide, is a crafty backdoor-enabled worm that spreads through removable drives, network shares and popular file-sharing applications. Once installed, it drops copies of itself on all removable drives, possibly by randomizing the the file names. It also spreads by scanning machines on an infected computer's local network and pasting a copy of a file called autorun.inf, which many versions of Windows automatically execute when the drive is attached.
Renocide also plants copies of itself in shared folders of file-sharing applications and cleverly disguises them as titles of popular games and apps currently be shared on popular torrent sites.
More details - link
