Skip Navigation

  • Home
  • Contact us
  • FAQ
  • Glossary
  • Public key
  • Sitemap
  • Cymraeg
  • What's new
CPNI - Centre for the Protection of National Infastructure

Advanced search

  • About CPNI
  • The threats
  • Security planning
  • Methods of attack
  • Protecting your assets
  • Products and services
    • CSIRTUK advisories
      • Advisories archive
    • General protective security publications
    • InfoSec briefings
    • InfoSec technical notes
    • InfoSec vulnerability disclosures
    • Good practice guidelines
    • Viewpoints
    • Information exchanges
    • Risk Management Delivery Group
  • Research
Home > Products and services > CSIRTUK advisories > Advisories archive > January 2007 > Malicious Software Report

January 2007

Malicious Software Report

ID: 00001
Ref: 842/2006
Date: 01 January 2007:14:50:37
Version: 1
Title: Malicious Software Report
Abstract: Warning of Trojan-Downloader.Win32.Tibs.jy (aka W32/Dref-V, Win32/Nuwar.M plus variants)
As projected in UNIRAS Briefing 813/2006, the virus writers have taken the opportunity to release new malware over the holiday period. This particular problem arrives as an E-mail file attachment called 'postcard.exe' (or similar) with a subject line of 'Happy New Year!' (or similar).

Analysis indicates that the Email was spammed to a large number of recipients.
However, in the main, it is still considered to be a LOW threat by the majority of antivirus vendors.

The following URLs provide additional information:
http://www.niscc.gov.uk/niscc/docs/br-20061208-00857.html?lang=en
http://www.sophos.co.uk/security/analyses/w32drefv.html
http://www.f-secure.com/weblog/
http://www.f-secure.com/v-descs/luder_a.shtml
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM%5FNUWAR%2EBH
  • Accessibility |
  • Terms and conditions |
  • Privacy statement |
  • Data protection act |
  • Freedom of information |