lists.openwall.net   lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  linux-hardening  linux-cve-announce  PHC 
Open Source and information security mailing list archives
 
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list] 
Message-ID: <411136A2.1080709@cornell.edu>
Date: Wed, 04 Aug 2004 15:18:58 -0400
From: "Elliott C. Bäck" <ecb29@...nell.edu>
Cc: bugtraq@...urityfocus.com
Subject: Re: New MyDoom variant


  According to Computer Associates:

"cmd
bat
com
exe
pif
scr

The attachment name may also be the e-mail address of the  recipient.

The attachment could also be in a ZIP archive, and can have a "double 
extension", with "doc", "txt", "htm" or "html" followed by many spaces, 
then the real extension."

http://www3.ca.com/securityadvisor/virusinfo/virus.aspx?id=39711

Elliott C. Bäck
------------------------------------------
http://www.elliottback.com
http://www.rso.cornell.edu/sevenspirits/


Paul Kurczaba wrote:

>What extension does the attachment have (exe, pif, zip)?
>
>-Paul
>----- Original Message ----- 
>From: <albatross@....it>
>To: <bugtraq@...urityfocus.com>
>Sent: Wednesday, August 04, 2004 9:22 AM
>Subject: New MyDoom variant
>  
>
>  
>
>
>
>
>  
>

Powered by blists - more mailing lists

Powered by Openwall GNU/*/Linux Powered by OpenVZ