Conficker breakthrough - Malware leaves a 'fingerprint' on infected machines
@ 2009/03/30Charles send us an extremely interesting mail today regarding the Conflicker Worm set to go off April 1st.
---------
Busted! Conficker's tell-tale heart uncovered
“Security experts have made a breakthrough in their five-month battle against the Conficker worm, with the discovery that the malware leaves a fingerprint on infected machines which is easy to detect using a variety of off-the-shelf network scanners.”
"We have no idea what Conficker is going to do on April 1," Kaminsky said. "Certainly there is no reason anyone wants to find out on their network. My recommendation is that people run one of the vulnerability scanners on Monday or Tuesday."
http://www.theregister.co.uk/2009/03...ure_discovery/
Background Material
Tools to remove Conficker
http://www.symantec.com/business/sec...011316-0247-99
http://www.f-secure.com/v-descs/worm...nadup_al.shtml
http://www.bdtools.net/
Conficker Q&A
http://www.f-secure.com/weblog/archives/00001636.html
Analysis of Conficker C
http://mtc.sri.com/Conficker/addendumC/
http://en.wikipedia.org/wiki/Conficker
How to disable the ‘Autorun’ functionality in Windows
---------
Busted! Conficker's tell-tale heart uncovered
“Security experts have made a breakthrough in their five-month battle against the Conficker worm, with the discovery that the malware leaves a fingerprint on infected machines which is easy to detect using a variety of off-the-shelf network scanners.”
"We have no idea what Conficker is going to do on April 1," Kaminsky said. "Certainly there is no reason anyone wants to find out on their network. My recommendation is that people run one of the vulnerability scanners on Monday or Tuesday."
http://www.theregister.co.uk/2009/03...ure_discovery/
Background Material
Tools to remove Conficker
http://www.symantec.com/business/sec...011316-0247-99
http://www.f-secure.com/v-descs/worm...nadup_al.shtml
http://www.bdtools.net/
Conficker Q&A
http://www.f-secure.com/weblog/archives/00001636.html
Analysis of Conficker C
http://mtc.sri.com/Conficker/addendumC/
http://en.wikipedia.org/wiki/Conficker
How to disable the ‘Autorun’ functionality in Windows