Discovered: January 2, 2003
Updated: February 13, 2007 11:41:58 AM
Also Known As: W32/Rbit.worm [McAfee], Backdoor.Tankedoor.02 [KAV]
Type: Worm
Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows XP
The W32.Kwbot.B.Worm attempts to spread itself through the KaZaA file-sharing network. It also has a Backdoor Trojan capability, allowing a hacker to gain control of the compromised computer. It is written in the Microsoft Visual C++ programming language and is compressed with UPX.
Note: The virus definitions released on October 8, 2003 contained an updated detection to account for the discovery of a minor variant of W32.Kwbot.B.Worm.
Protection
-
Initial Rapid Release version January 3, 2003
-
Latest Rapid Release version August 20, 2008 revision 017
-
Initial Daily Certified version January 3, 2003
-
Latest Daily Certified version August 20, 2008 revision 016
-
Initial Weekly Certified release date January 4, 2003
Click for a more detailed description of Rapid Release and Daily Certified virus definitions.
Threat Assessment
Wild
-
Wild Level: Low
-
Number of Infections: 0 - 49
-
Number of Sites: 0 - 2
-
Geographical Distribution: Low
-
Threat Containment: Easy
-
Removal: Easy
Damage
Distribution
-
Distribution Level: Medium
Writeup By: Yana Liu
