Bush Worm dances its way into computers

Check out this animation of Bush – says a message popping up in your MSN Messenger. If you click on the link that follows to see the president of America letting his hair down, you will be unwittingly inviting a Worm to do some fast-paced moves inside your computer, say Security Experts at MicroWorld Technologies.

A Worm named “Worm.Win32.VB.au’ spreads with the help of messages written in Spanish, which says “mira esta animacion de bush’, coming from known and unknown contacts. Translated to English, it reads as, “See this animation of Bush’. After getting into a victim’s computer, the Worm quickly sends the malicious links to all contacts present.

Most such attacks in the past were in the form of emails carrying sensational attachments. But in the case of malwares using Instant Messengers like the one in question, it’s about just one click. The best Social Engineering is when you don’t give an opportunity for the targeted user to think and instead get her to act on her reflex, adds Rohini.
 
Win32.VB.au is written in Visual Basic language and comes with a size of 122,880 Bytes. The malware creates a few registry entries so that it gets executed every time the computer is started.
 
The IM worm does not contain any dangerous payload in its present form. But similar methods can be employed by Virus Writers in proliferating more destructive Worms or Trojan Downloaders in a possible second wave of attacks. Exploiting vulnerabilities in Instant Messengers is another mode of malware proliferation that’s getting increasing attention from Virus writers.