Last Updated: 2006-08-17 15:04:40 UTC
by Chris Carboni (Version: 1)
Shortly after, we heard from Sergio de los Santos from Virustotal who gave us some additional information:
We have detected a new malware for MS06-047 vulnerability.
It comes with a name syosetu.doc with 107.520 bytes. Hash MD5 is
Today, only a few AV can detect it (via virustotal):
W97M/ProjMod!exploit (eTrust-Vet), W32/Bgent.ZE!tr (Fortinet ),
Exploit-OleModule (McAfee), Exploit:Win32/Ponaml.gen (Microsoft),
Trojan.Mdropper (Symantec), TROJ_MDROPPER.BK (TrendMicro).
Thanks Juha-Matti and Sergio!