|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
RE: WORM_MIMAIL.A Anyone have any info on what this does yet?
From: Jay Woody (jay_woody
tnb.com)
Date: Fri Aug 01 2003 - 13:53:42 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
We are just dropping everything from admintnb.com. This message seems
to always use admin as the "From:" field and just append our company
name to it. We will probably also use another piece of equipment to do
a subject line drop also.
http://us.mcafee.com/virusInfo/default.asp?id=description&virus_k=100523
JayW
>>> "Schmehl, Paul L" <paulsutdallas.edu> 08/01/03 01:16PM >>>
<http://securityresponse.symantec.com/avcenter/venc/data/w32.mimail.amm
.html>
We're blocking message.zip at the gateway.
Paul Schmehl (paulsutdallas.edu)
Adjunct Information Security Officer
The University of Texas at Dallas
AVIEN Founding Member
http://www.utdallas.edu/~pauls/
> -----Original Message-----
> From: Danny [mailto:drh26drexel.edu]
> Sent: Friday, August 01, 2003 12:56 PM
> To: incidentssecurityfocus.com
> Subject: WORM_MIMAIL.A Anyone have any info on what this does yet?
>
>
> We are getting flooded with these little puppies, does anyone
> have any
> additional info on what this thing does once it infects a
> host? I'll be infecting a box to test myself after i send
> this email but if
> anyone has done testing already it would great to hear your input.
---------------------------------------------------------------------------
----------------------------------------------------------------------------
---------------------------------------------------------------------------
----------------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]