| Name: | MTX |
| Aliases: | Apology, W32/MTX, I-Worm.MTX, W95.MTX, 32/MTX@mm, W32/Apology-B,PE_MTX.A, W95.Oisdbo, Matrix, W95.MTX.dr, W95.MTX (.dll), Sabia, TheApology virus, W95/MTX.9244.A, |
| Ports: | 80 |
| Files: | Ie_pack.exe - win32.dll - mtx_.exe - Wsock32.dll - Wininit.ini - AVP_Updates.exe - README.TXT.pif - I_wanna_see_YOU.TXT.pif - MATRiX_Screen_Saver.SCR - LOVE_LETTER_FOR_YOU.TXT.pif - NEW_playboy_Screen_saver.SCR - BILL_GATES_PIECE.JPG.pif - TIAZINHA.JPG.pif - FEITICEIRA_NUA.JPG.pif - Geocities_Free_sites.TXT.pif - NEW_NAPSTER_site.TXT.pif - METALLICA_SONG.MP3.pif - ANTI_CIH.EXE - INTERNET_SECURITY_FORUM.DOC.pif - ALANIS_Screen_Saver.SCR - READER_DIGEST_LETTER.TXT.pif - WIN_$100_NOW.DOC.pif - IS_LINUX_GOOD_ENOUGH!.TXT.pif - QI_TEST.EXE - AVP_Updates.EXE - SEICHO-NO-IE.EXE - YOU_are_FAT!.TXT.pif - FREE_xxx_sites.TXT.pif - I_am_sorry.DOC.pif - Me_nude.AVI.pif - Sorry_a bout_yesterday.DOC.pif - Protect_your_credit.HTML.pif - JIMI_HMNDRIX.MP3.pif - HANSON.SCR - F******_WITH_DOGS.SCR - MATRiX_2_is_OUT.SCR - zipped_files.EXE - BLINK_182.MP3.pif - - 9,244 bytes - 9,250 bytes |
| Created: | Aug 2000 |
| Requires: | |
| Actions: | Remote Access / Worm / Virus / Trojan dropper / Mail trojan /Downloading trojan |
| It tries to destroy up to eight different antivirus programs and makes it impossible to mail the AV company or visit its Web-site. Wsock32.dll is patched by the trojan. Whenever the user sends a mail, the trojan will mail another one to the same recipient with an attachment only. May be updated from the Internet. | |
| Versions: | A, B, D, |
| Registers: | HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\ |
| Notes: | Works on Windows 95, 98, ME, NT and 2000. |
| Country: | |
| Program: |