Threat Description

Worm:W32/Vobfus.BK

Details

Aliases: Worm:W32/Vobfus.BK, Worm:W32/Vobfus.BK, Trojan.Agent.VB.BNU
Category: Malware
Type: Worm
Platform: W32

Summary


A standalone malicious program which uses computer or network resources to make complete copies of itself.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.



Technical Details


Worm:W32/Vobfus.BK is the latest variant in the large Worm:W32/Vobfus family (also detected as Trojan:W32/Chinky).

Unlike previous variants, this latest version of the malicious program is able to exploit a recent zero-day vulnerability (CVE-2010-2568) in Microsoft Window's handling of shortcut icons.

For more information on the vulnerability, please refer to Microsoft Security Bulletin 2286198 (http://www.microsoft.com/technet/security/advisory/2286198.mspx).

This malware is also mentioned in our Labs Weblog:





Description Created: 2010-07-27 05:42:20.0

Description Last Modified: 2010-07-27 06:50:49.0


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More