W32.Pet_ticky.gen


Aliases: W32/Pet_ticky.gen, Pet_ticky
Variants: N/A

Classification: Malware
Category: Computer Worm

Status: Inactive
Spreading: Slow
Geographical info: Some parts of Asia, Europe, North and South America, Africa and Australia
Removal: Easy
Platform: W32
Discovered: 30 May 2002
Damage: Low

Characteristics: W32.Pet_ticky.gen was discovered on May 30, 2002. This is a worm that sends itself to all email addresses in the Microsoft Outlook Address Book. This means that W32.Pet_ticky.gen is a mass mailer. It arrives as an email in the Microsoft Outlook using the subject “New Visual Tool for U” and a file attachment as Visual_tool.exe. This worm is a compiled Visual Basic executable which has been compressed with UPX.

More details about W32.Pet_ticky.gen

If W32.Pet_ticky.gen is executed, it displays a dialog box message that says “desktop.ini”. Then, it creates the Backup folder under drive C to copy itself using a random file name. the worm also produces a copy of itself as Desktop.iniold_.exe under My Documents and Kern32dll.exe under %System%. After that, the worm adds the value kern32dll.exe to the system registry keys and begins sending itself to all contacts listed in the Address Book of the Microsoft Outlook.

Since the worm propagates in the Microsoft Outlook, W32.Pet_ticky .gen particularly affects Windows Operating Systems. The W32.Pet_ticky.gen software is also capable of disabling the running processes of the applications that are present on the computer. This includes the processes of anti-malware programs. The computer becomes more susceptible in acquiring threats when it is not protected. The presence of this program may also lead to sudden shutdowns and restarts of the computer. This may lead to system crash.