Home > Threat descriptions >

Net-Worm

Classification

Category: Malware

Type: Net-Worm

Aliases: Net-Worm

Summary


A net-worm is a type of worm that finds new host machines to infect by using network shares -a media (such as a hard drive or server) that can be accessed by multiple computers on a local area network (LAN), such as a company intranet. The net-worm will usually infect the share in order to subsequently infect every computer that accesses the share.

Removal


Automatic action

Once detected, the F-Secure security product will automatically handle a harmful program or file by either deleting or renaming it.

Knowledge Base

Find the latest advice in our Community Knowledge Base.

About the product

See the manual for your F-Secure product on the Help Center.

Contact Support

Chat with or call an expert for help.

Submit a sample

Submit a file or URL for further analysis.

Technical Details


In many cases, corporate computers and servers have a few open shares, making these networks particularly vulnerable and facilitating a net-worm's rapid spread through the network. In more sophisticated cases, net-worms may even contain a list of generic passwords to use in attacking password-protected shares.

Once transferred to another host machine, some net-worms copy themselves to startup folders of different users on remote computers. In this case they can start every time a user is logged on to the machine.

A net-worm may also include a malicious payload, such as dropping keylogger program on the infected computer, or attempting to connect it to a remote server.

For more information about worms, see Article: Worms.