Threat Description

Zipper

Details

Aliases: Zipper
Category: Malware
Type: Virus
Platform: DOS

Summary


Zipper contains several bugs which might corrupt the infected files.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

Detailed instructions for F-Secure security products are available in the documentation found in the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for further assistance.



Technical Details


This is a simple virus which stays resident in memory and infects COM and EXE files when they are accessed. \COMMAND.COM and \DOS\FORMAT.COM are infected on the first execution.

If you run PKZIPFIX against an infected COM or EXE file, it will create a PKFIXED.ZIP, which contains an assembly source file called ZIPPER.ASM.

The virus contains this text, which is never displayed:

>>*>> Use PKUNZIP *.EXE immediately! <<*<<



Description Created: 2006-01-01 10:53:46.0

Description Last Modified: 2006-01-01 00:00:00.0


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More