Threat Description

Worm: W32/Vobfus.BK


Category: Malware
Type: Worm
Platform: W32
Aliases: Worm:W32/Vobfus.BK, Trojan.Agent.VB.BNU


Worm:W32/Vobfus.BK is the latest variant in the large Worm:W32/Vobfus family (also detected as Trojan:W32/Chinky).


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More scanning & removal options

More information on scanning or removal options is available in the documentation for your F-Secure security product on the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for more information.

Contact Support

For further assistance, F-Secure customers can request support online via the Request support or the Chat forms on our Home - Global site.

Technical Details

Unlike previous variants, this latest version of the malicious program is able to exploit a recent zero-day vulnerability (CVE-2010-2568) in Microsoft Window's handling of shortcut icons.

For more information on the vulnerability, please refer to Microsoft Security Bulletin 2286198 (

This malware is also mentioned in our Labs Weblog:

Description Created: 2010-07-27 05:42:20.0

Description Last Modified: 2010-07-27 06:50:49.0


Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More