Email-Worm.Win32.Mydoom.l


Detection added: 19.02.2007 12:25:18
Behavior: Email Worm
Email worms spread via infected email messages. The worm may be in the form of an attachment or the email may contain a link to an infected website.
Worm will be activated when the user clicks on the attachment or will be activated when the user clicks on the link leading to the infected site.
Use one of the following methods to spread: Direct connection to SMTP servers using a SMTP API library coded into the worm; MS Outlook services; Windows MAPI functions.

Behavior: Worm
A worm that spreads via e-mail, usually in infected executable e-mail file attachments.


Platform: This malware is the Portable Executable (PE) format (is a file format for executables, object code, DLLs, FON Font files, and others used in 32-bit and 64-bit versions of Windows operating systems).

Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP, Windows Vista, Windows 7 (x86/x64), Windows 8 (x86/x64), Windows 10 (x86/x64)


NOTE: The hash is only listed for the first detected malicious file. SHA/MD5 hash should not be intended as a security/antivirus solution, instead it provides you an additional information, allowing you to identify known malware files.
Learn more about:
 Latest threats
 Nicta Anti-Virus Engine (SDK)
 Anti-Malware Digital Patrol
 Anti-Virus Cloud Engine

Take the following steps to help prevent infection on your computer:
  • Use up-to-date antivirus software.
  • Get the latest updates for Operating system and your installed software.
  • Use strong passwords and password management software.
  • Use caution when opening attachments, accepting file transfers and clicking on links to webpages.