New PnP worm spreading

We’ve received numerous reports on a new worm spreading via the PnP vulnerability.
We detect it as Net-Worm.Win32.Small.d.

Normally the worm’s filename is wintbp.exe, it contains a basic IRCBot with Trojan-Downloader functionality. MD5: 7a67f7a8c844820c1bae3ebf720c1cd9

An urgent update has been released.

Related Posts

Leave a Reply

Your email address will not be published. Required fields are marked *