Another new variant of MyDoom worm - Mydoom.T, was found on
September 3rd, 2004. This worm variant is similar to previous
ones. It spreads in e-mails with different subject and body
texts, to Kazaa P2P (peer-to-peer) file sharing network and also
drops a backdoor component that listens on port 5422.
Additionally the worm can perform a DDoS (Distributed Denial of
Service) attack against Microsoft's website.
Detection
This worm variant is detected as 'W32/Mydoom.T@mm' and as
'I-Worm.Mydoom.gen' since the following FSAV updates:
