|
|
|
|
¹ÙÀÌ·¯½º
À̸§ |
W32/Netsky.18432@mm |
¹ÙÀÌ·¯½º
Á¾·ù |
Worm |
½ÇÇà
ȯ°æ |
Windows |
Á¦ÀÛÁö |
ºÒºÐ¸í |
¹ß°ßÀÏ |
20040404 |
¹ÙÀÌ·¯½ºÅ©±â |
18,432 byte |
¸ÞÀÏ
Á¦¸ñ |
Sample ¿Ü ´Ù¼ö |
÷ºÎÆÄÀÏ |
sample8.pif ¿Ü ´Ù¼ö |
¹ÙÀÌ·¯½º Áõ»ó |
ÀÌ ¿úÀº À̸ÞÀÏÀ» ÅëÇÏ¿© 4¿ù 4ÀÏ ºÎÅÍ ÀüÆĵǾúÀ¸¸ç ±¹³»¿¡´Â 4¿ù 6ÀÏ ºÎÅÍ ÀüÆĵDZ⠽ÃÀÛÇÑ °ÍÀ¸·Î ÃßÁ¤µÈ´Ù.
÷ºÎÆÄÀÏÀÇ ¾ÆÀÌÄÜ ¸ð¾çÀº µµ½º¿ë ÇÁ·Î±×·¥ ¾ÆÀÌÄÜÀ¸·Î µÇ¾î ÀÖ´Ù.
¿úÀ» Æ÷ÇÔÇÑ À̸ÞÀÏÀº ¾Æ·¡¿Í °°Àº ³»¿ëÀ» °¡Áö°í ÀÖ´Ù.
[¸ÞÀÏ Á¦¸ñ]
Approved
Hello
Hello!
Important
My details
Re: Approved
Re: Hello
Re: Hi
Re: Important
Re: My details
Re: Request
Re: Thanks you!
Re: Your details
Re: Your document
Re: Your information
Request
Sample
Thank you!
Your details
Your document
Your information
[¸ÞÀÏ ³»¿ë]
ÇöÀç ±îÁö ¾Ë·ÁÁø °ÍÁß ´ÙÀ½¿¡¼ ¼±Åà µÈ¾î Áö¸ç Å©°Ô ³×ºÎºÐÀ¸·Î ±¸¼ºµÇ¾î ÀÖ´Ù.
* º»¹®ÀÇ Ã¹ºÎºÐ
Hello!
Hi!
* º»¹®ÀÇ µÎ¹ø° ºÎºÐ
Approved, here is the document.
For more details see the attached document.
For more information see the attached document.
Here is the <·£´ýÇÑ ¹®ÀÚ¿>.
Here is the document.
I have found the <·£´ýÇÑ ¹®ÀÚ¿>.
I have sent the <·£´ýÇÑ ¹®ÀÚ¿>.
I have spent much time for the <·£´ýÇÑ ¹®ÀÚ¿>.
I have spent much time for your document.
It can also include the following:
My <·£´ýÇÑ ¹®ÀÚ¿> is attached.
My <·£´ýÇÑ ¹®ÀÚ¿>.
Note that I have attached your document.
Please have a look at the <·£´ýÇÑ ¹®ÀÚ¿>.
Please have a look at the attached document.
Please notice the attached <·£´ýÇÑ ¹®ÀÚ¿>.
Please notice the attached document.
Please read quickly.
Please read the <·£´ýÇÑ ¹®ÀÚ¿>.
Please read the attached document.
Please see the <·£´ýÇÑ ¹®ÀÚ¿>.
Please, <·£´ýÇÑ ¹®ÀÚ¿>.
See the document for details.
The <·£´ýÇÑ ¹®ÀÚ¿> is attached.
The <·£´ýÇÑ ¹®ÀÚ¿>.
The requested <·£´ýÇÑ ¹®ÀÚ¿> is attached!
Your <·£´ýÇÑ ¹®ÀÚ¿> is attached.
Your <·£´ýÇÑ ¹®ÀÚ¿>.
Your file is attached to this mail.
* º»¹®ÀÇ ¼¼¹ø° ºÎºÐ
Thank you
Thanks
Yours sincerely
* º»¹®ÀÇ ³×¹ø° ºÎºÐ
+++ X-Attachment-Type: document
+++ X-Attachment-Status: no virus found
+++ Powered by the new Panda OnlineAntiVirus Visit us:
+++ Website: www.pandasoftware.com
+++ X-Attachment-Type: document
+++ X-Attachment-Status: no virus found
+++ Powered by the new MCAfee OnlineAntiVirus Visit us:
+++ Homepage: www.mcafee.com
+++ X-Attachment-Type: document
+++ X-Attachment-Status: no virus found
+++ Powered by the new F-Secure OnlineAntiVirus Visit us:
+++ Visit us: www.f-secure.com
+++ X-Attachment-Type: document
+++ X-Attachment-Status: no virus found
+++ Powered by the new Norton OnlineAntiVirus Visit us:
+++ Free trial: www.norton.com
[÷ºÎÆÄÀÏ]
<·£´ý ¹®ÀÚ¿><·£´ýÇÑ ¼ýÀÚ>.PIF
(¿¹)
Sample8.pif (29KB)
·£´ýÇÑ ¹®ÀÚ¿Àº ´ÙÀ½¿¡¼ ¼±ÅõǾî Áø´Ù.
abuse list
account
answer
approved document
approved file
archive
concept
contact list
corrected document
description
detailed document
details
developement
diggest
document
e-mail
excel document
final version
homepage
icq number
important document
improved document
improved file
information
instructions
letter
message
movie document
new document
notice
number list
old document
order
personal message
phone number
photo document
picture document
postcard
powerpoint document
presentation document
release
report
requested document
sample
secound document
story
summary
textfile
user list
word document
(¿úÀÌ ¹ß¼ÛÇÑ ¸ÞÀÏÀÇ ¿¹)
¸ÞÀÏ Á¦¸ñ Sample
º»¹® ³»¿ë
Hi!
Please read the sample.
Thank you
+++ X-Attachment-Type: document
+++ X-Attachment-Status: no virus found
+++ Powered by the new F-Secure OnlineAntiVirus Visit us:
+++ www.f-secure.com
÷ºÎÆÄÀÏ À̸§ : sample8.pif
[Ư¡]
÷ºÎÆÄÀÏÀº ƯÁ¤ ¹®ÀÚ¿°ú ¼ýÀÚ·Î ±¸¼ºµÇ¾î ÀÖÀ¸¸ç pifÈ®ÀåÀÚ¸¦ °¡Áø ÆÄÀÏ·Î ÀüÆĵȴÙ.
óÀ½ ½ÇÇà½Ã¿¡ ´ÙÀ½°ú °°ÀÌ À©µµ¿ì Æú´õ (win 2000, NT : c:\Wint, win XP : c:\windows)¿¡ EasyAv.exe, UINMZERTINMDS.OPM ÆÄÀÏÀÌ »ý¼ºµÈ´Ù.
¶ÇÇÑ, ´ÙÀ½Ã³·³ ·¹Áö½ºÆ®¸¦ ¼öÁ¤ÇÏ¿© ´ÙÀ½ ºÎÆýà ½ÇÇàµÇµµ·Ï Á¶ÀÛÇÑ´Ù.
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run Ç׸ñ¿¡
(win2000, NTÀÇ °æ¿ì)
EasyAV = c:\winnt\EasyAV.EXE
(WinXPÀÇ °æ¿ì)
EasyAV = c:\windows\EasyAV.EXE
´ÙÀ½À¸·Î .HTM, .HTML,, .TXT, .WAB, .PHP, .MDX, ,MBX, .MSG È®ÀåÀÚ¸¦ Áö´Ñ ÆÄÀÏ¿¡¼ ¸ÞÀÏ ÁÖ¼Ò¸¦ ¼öÁýÇÏ¿© ¿úÀÌ Ã·ºÎµÈ ¸ÞÀÏÀ» ¹ß¼ÛÇÑ´Ù
´Ü ´ÙÀ½°ú °°Àº ¸ÞÀÏÁּҷδ °¨¿°µÈ ÆÄÀÏÀ» º¸³»Áö ¾Ê´Â´Ù.
@antivi
@bitdefender
@f-pro
@f-secur
@freeav
@kaspersky
@mcafee
@messagel
@microsof
@norman
@norton
@pandasof
@skynet
@sophos
@spam
@symantec
@viruslis
abuse@
noreply@
ntivir
reports@
spam@
¶ÇÇÑ ·¹Áö½ºÆ®¸®¿¡ Mydoom, Mimail, Bagle, µîÀÌ »ý¼ºÇÑ °ª°ú ¸î°¡Áö ·¹Áö½ºÆ®¸® °ªÀÌ »èÁ¦ µÈ´Ù.
¸¶Áö¸·À¸·Î TCP 6789 Æ÷Æ®¸¦ ¿¾î µÎ¾î °³ÀÎÁ¤º¸ À¯ÃâÀÇ À§ÇèÀ» °¡Áö°í ÀÖ´Ù.
|
Ä¡·á ¹æ¹ý |
Åͺ¸¹é½ÅAi, Åͺ¸¹é½Å Online, Åͺ¸¹é½Å 2001 Á¦Ç°±ºÀ¸·Î Ä¡·á°¡´É.
*Åͺ¸¹é½Å Ai¸¦ »ç¿ëÇÏ½Ã°í ¾Æ¿ô·èÀ» »ç¿ëÇϽŠ´Ù¸é ¹Ýµå½Ã À̸ÞÀÏ °¨½Ã±â¸¦ ½ÇÇàÇϽñ⠹ٶø´Ï´Ù.
|
Á÷Á¢Ä¡·á¹æ¹ý |
|
|
|
|
|