You are here: silicon.com > Resources > White Papers

White Papers

Carrytone / I-Worm.Taripox.b (F-Secure)

Overview December 26, 2001

NAME: Carrytone

ALIAS: I-Worm.Taripox.b

Carrytone is a mass-mailer that uses a new technique to spread. The worm body is 40 kilobytes in size and it was written in C. It works properly on Windows NT based systems only.

For spreading it implements a simple SMTP proxy that listens on port 25 (standard SMTP port) on the infected machine. When the worm is started it fetches the SMTP server name from the user's e-mail settings then it modifies the HOSTS file so that the SMTP server's address points to the localhost where the worm is listening. This way when the user sends an e-mail his/her e-mail client will connect to the worm instead of the real mail server. After receiving the connection the worm relays all the commands and replies between the client and the real mail server until it gets the reply to SMTP DATA command that marks the beginning of the e-mail data. At this point it inserts a copy of itself into the message.

The attachment name it uses is composed from the recipient's name and a '.doc.pif' extension.

Click through to alert text for disinfection information.

Further White Paper Details
Publisher	F-Secure	File Format	HTML
Date Published	December 2001	Downloads	4
Format	White Papers
Topics	N/A

Did you find this white paper useful? 2 out of 5 users found this white paper useful

Delivering Information in Real Time

Publisher:
IBM

IDC reports on Novell's Secure Desktop Solution: A Modern-Day Marriage of Business Benefit and Risk Reduction

Publisher:
Novell

Green IT: Reducing your Carbon Footprint with Citrix

Publisher:
Citrix Systems

A Day in a Low Carbon Life 2012

Publisher:
IBM

Does 802.11n deliver better wireless services for Enterprises?

Publisher:
Siemens

IDC reports on Novell's Secure Desktop Solution: A Modern-Day Marriage of Business Benefit and Risk Reduction

This IDC whitepaper examines how companies are turning to integrated security solutions, such as Novell Secure Desktop Solution, to deal with the vulnerability of mobile assets and implement a comprehensive security strategy.

Publisher:
Novell

Getting Started with Master Data Management

Master data management forms part of an overall enterprise governance program that aims to establish trusted data throughout the enterprise. This white paper from Mike Ferguson of Intelligent Business Strategies defines master data, examines why it is needed, and explores methodologies for implementing master data management.

Publisher:
DataFlux

Balancing Security Against Productivity

What makes for great security? Is it about keeping the bad guys out or letting the good guys in? About defending attacks or preventing them? When IDG Research Services queried IT security professionals on the topic, intriguing insight into the effectiveness of security management came to light.

Publisher:
Novell

Also on silicon.com

Site Navigation:

White Papers

Carrytone / I-Worm.Taripox.b (F-Secure)

Quick Sitemap Links:

About Us

Search

Blogs

Verticals

CNET Networks in Europe

CNET Networks in the United States

CNET Networks in Asia Pacific