Central Command Warns of a MiMail.A Worm

Central Command, a leading provider of PC anti-virus software and services, today warns Internet users of Worm/MiMail.A, a mass mailing Internet worm circulating worldwide. Discovered on August 1, 2003, Worm/MiMail.A attempts to use a Microsoft Internet Explorer exploit (a security hole) that allows a created executable virus to run on the local computer.

Worm/MiMail.A is an Internet worm that spreads through e-mail by using addresses it collects from local files. It arrives with a zip file attachment, “message.zip”- this file contains the file “message.html”. Using the noted security exploit within Internet Explorer, message.html will produce an executable file and run it.

The worm arrives through e-mail in the following format:

Subject: your account < account info >
Body:

Hello there,

I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details.
—
Best regards, Administrator

Attachment: message.zip

“According to our Emergency Virus Response Team® Worm/MiMail.A is spreading globally at an alarming rate. Our preliminary virus tracking report shows that U.S. based computer users are being the hardest hit thus far, at this time 61% of the confirmed infection reports have originated in the United States,” said Steven Sundermeier, Vice President of Products and Services at Central Command, Inc. “Using a newer vulnerability within Internet Explorer, as well as, creative social engineering are fueling the fire for Worm/MiMail.A.”