W32.Scrimge!gen


Aliases: N/A
Variants: N/A

Classification: Malware
Category: Computer Worm

Status: Active & Spreading
Spreading: Slow
Geographical info: Asia, North and South America, and some parts of Europe and Australia
Removal: Easy
Platform: W32
Discovered: 17 Aug 2007
Damage: Low

Characteristics: The W32.Scrimge!gen application is a general identification for a worm family that propagates using the MSN Messenger.

More details about W32.Scrimge!gen

The W32.Scrimge!gen worm is a detection for a worm family that propagates using the MSN instant messenger. This worm puts itself w/in a .zip file and spreads the .zip file to contacts in MSN Instant Messenger with enticing phrases such as “look @ my cute new puppy :-D”, “look @ this picture of me, when I was a kid”, “lol, your mom just sent me this picture?.”, “Did you take this picture?”, “is that you on the left?”, “How drunk was I in this picture?”, “can i up some of these pics of ya to my myspace profile?”, and “Can you believe someone actually wears this size bra? I could use it for a Tent”.

This malware may also arrive as an email message attachment or with files acquired in Peer-to-Peer networks. It can be unknowingly downloaded as well by the user from malicious websites. Reports claim that the W32.Scrimge!gen program targets computers With Windows Operating Systems and creates and autorun.inf file in a root folder in Windows. Anti-malware reports show that the program installs itself in the root of fixed and removable drives. This is done as an alternative or complementary solution to ensure that the malware executes every time the drive or media is accessed.