Microsoft has warned of a new worm called Mywife. Mywife is a mass mailing malware variant which tries to lure users into opening an attachment sent in an email. If opened, the malware sends itself to all the contacts in the system address book.


Microsoft has warned of a new work called Mywife. Mywife is a mass mailing malware variant which tries to lure users into opening an attatchment sent in an email

If opened, the malware sends itself to all the contacts in the system address book. The malware could also spread over writeable network shares on systems that have blank administrative passwords.

Microsoft noted that consumers who use the most updated and recent antivirus software could be at a lesser risk of infection.

On systems that are infected by Mywife, the worm is intended to corrupt common document files permanently on the third day of every month. The worm also modifies or deletes files and registry keys associated with computer security-related applications.

The worm deletes product keys from the following keys:

HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRun
HKEY_CURRENT_USERSoftwareMicrosoftWindowsCurrentVersionRun
HKEY_LOCAL_MACHINESoftwareMicrosoftWindowsCurrentVersionRunServices

The worm locates computers on the network using network API calls WNetOpenEnum and WNetEnumResource.

The name assigned to this malware by the Common Malware Enumeration (CME) group is ID CME-24.

For more information on the worm and how to prevent your computer from infection, click here.

 

 

 

 

Sharing is caring