Researchers are warning peer-to-peer (p2p) application users of a new proof-of-concept virus that acts similarly to the W97M/Melissa malware.
The virus, MSH/Cibyz, which is based on Windows PowerShell, was released by members of the RRLF virus group, according to an advisory from McAfee.
PowerShell is a command line shell and scripting language that runs on Microsoft XP, Windows Server 2003, Vista and Longhorn operating systems.
The malware is a low risk to home and corporate users, according to a McAfee advisory. However, it can create a copy of itself in the Windows system directory and then modifies registry keys so users cannot view hidden files and extensions.
Related
- ‘Blue Pill’ Prototype Creates 100% Undetectable Malware
- KWBot worm hits KaZaA
- Duload Worm spreads through KaZaA network
- Microsoft Loosens Hold Over 3rd Party Vendors
- New worm on Kazaa
Zeropaid on Facebook
People still use KaZaa? Hmm…. I’m sure it won’t be long until Symantic or McAfee comes up with a detection method to prevent infection anyway…