Virus:Win32/Sality.AM
ALIAS NAMES
Win32/Kashu.B (AhnLab)
·
Win32.Sality.NX (BitDefender)
·
Win32/Sality.W (CA)
·
Win32.Sector.5 (Dr.Web)
·
Win32/Sality.NAO (ESET)
·
W32/Sality.AJ (Frisk (F-Prot))
·
Virus.Win32.Sality.y (Kaspersky)
·
W32/Sality.AE (McAfee)
·
W32/Sality.AO (McAfee)
·
W32/Smalltroj.DXSV (Norman)
·
W32/Sality-AM (Sophos)
·
W32.Sality.AE (Symantec)
·
Win32.Sality.AK (VirusBuster)
Alert Level
Severe
Summary
Virus:Win32/Sality.AM is a variant of a family of polymorphic file
infectors that target Windows executable files with extensions .SCR or .EXE.
They may execute a damaging payload that deletes files with certain extensions
and terminates security-related processes and services.
Symptoms
System
Changes
The
following system changes may indicate the presence of Virus:Win32/Sality.AM:
- Infected files may unexpectedly
increase in size
- Anti-virus and firewall
applications may fail to function
Technical Information (Analysis)
Virus:Win32/Sality.AM is a variant of a family of polymorphic file
infectors that target Windows executable files with extensions .SCR or .EXE.
They may execute a damaging payload that deletes files with certain extensions
and terminates security-related processes and services.
Prevention
Take
the following steps to help prevent infection on your computer:
- Enable a firewall on your computer.
- Get the latest computer updates
for all your installed software.
- Use up-to-date antivirus
software.
- Limit user privileges on the
computer.
- Use caution when opening
attachments and accepting file transfers.
- Use caution when clicking on
links to web pages.
- Avoid downloading pirated
software.
- Protect yourself against social
engineering attacks.
- Use strong passwords.
0 comments:
Post a Comment