Filename | aim.ext |
MD5 Signature | 9d9e3a25db51ac5c1fe1599704878223 |
Discovered in | Nov 2003 |
Infect through | e-mail attachment or other vectors |
symptom | The infected receive command from master or peers via UDP port and then send spam mails accordingly at the rate about 6 mails per seconds |
From tcdpump file
Here the outbound syn packet in 25 port
strings aim.exe gives this