| Name: | Postcard |
| Aliases: | VBS.Postcard@mm, |
| Ports: | |
| Files: | 2001.{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B} - Dragonball.gt(dan kokoro hikareteku).{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B} - Millenium.{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B} - Post-card.tif.{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B} - [db.GT].wsf - docs.{3050F3D9-98B5-11CF-BB82-00AA00BDCE0B} - payl0ad.vbe - - 12,907 bytes |
| Created: | 2001 |
| Requires: | |
| Actions: | Worm / Mail trojan / Hacking tool |
| The VBS file can exist alone or inside a HTML file. It propagates to all users in the Outlook addressbook. Postcard forces the user to alter Internet Explorer´s Security Settings. It infects .html, .htm, .shtml, or .asp files. It also tries to disable the keyboard and the mouse. | |
| Versions: | |
| Registers: | HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RegisteredOwnerHKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RegisteredOrganization |
| Notes: | Works on Windows, together with MS Outlook and MS Internet Explorer. |
| Country: | |
| Program: | Written in Visual Basic Script (VBS). |