Eng
  1. Skip to navigation
  2. Skip to content
  3. Skip to sidebar


Xtac


Aliases:


Xtac
Xtac

Malware
Virus
DOS

Summary

Xtac stays resident in memory and infects COM and EXE files when they are executed. COMMAND.COM is infected by overwriting an unused area.



Disinfection & Removal

Automatic Disinfection

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.



Technical Details

Sometimes the virus deletes files with the following extensions:

  • COM
  • EXE
  • SYS
  • BAT
  • OBJ
  • OVR
  • OVL
  • INI
  • CFG
  • TPU
  • HLP
  • TPL
  • BGI
  • CHR

Xtac contains the following unencrypted internal text:

good news! you have justbeen smitten by XTAC - lyndon siao, usc-tc 

Xtac was reported to be in the wild in the USA in January 1996.





Description Created: 2006-01-01 15:22:14.0
Description Last Modified: 2006-01-01 00:00:00.0



Submit a sample




Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Give And Get Advice




Give advice. Get advice. Share the knowledge on our free discussion forum.