Summary

This instant messaging worm spreads in AOL Instant Messaging (AIM) network. It was found in December 2005.

Additional Details

It sends copies of itself to people in the buddy list as a link, pointing to a file called clarissa17.pif.

After that it replies to all messages from other users with a message saying either "lol that's cool" or "lol no its not its a virus".

Detection

Detection for this malware was published on December 5th, 2005 in the following F-Secure Anti-Virus updates:

[FSAV_Database_Version]
Version=2005-12-05_03

Write-up by: Mikko Hypponen, December 12th, 2005;