Virus Alert: W32/Mimail@MM (Mail from admin@osu.edu)
W32/Mimail@MM is a new virus which tries to trick recipients into opening the message by masquerading as being from their network administrator, by sending a message like the following:
From: Admin (ADMIN@osu.edu) [or other domain]
Subject: your account %user%
Importance: High
Hello there,
I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details.
--- Best regards, Administrator
Attachment: message.zip
The attached .ZIP file contains a file named MESSAGE.HTM, which uses known exploits to create and run an executable file, infecting the target machine with the virus.
Admin@osu.edu is an invalid e-mail address, and this message is a hoax. The message's intent is to fool people into running the attachment to infect their machine with the virus. Receiving this message does not mean there is a problem with your account, or that it is expiring.
For more information see the McAfee AVERT information on W32/Mimail@MM.
The worm is detected by the latest McAfee VirusScan virus definitions (v4282 and later), available from the OIT Web site. For computers which have been infected by the virus, McAfee's Stinger stand-alone removal tool has been updated and can detect and remove the infection.
Current Record: 1463
Create Date: 09-24-2003
Last Reviewed: 11-30-2004
Home
