digplanet beta 1: Athena
Share digplanet:

Sections

Agriculture

Applied sciences

Arts

Belief

Business

Chronology

Culture

Education

Environment

Geography

Health

History

Humanities

Language

Law

Life

Mathematics

Nature

People

Politics

Science

Society

Technology
Nimda
Family virus
Type Multiple
Operating system(s) affected Windows 95XP

Nimda is a computer worm, also a file infector. It quickly spread, surpassing the economic damage caused by previous outbreaks such as Code Red. Nimda utilized several types of propagation technique and this caused it to become the Internet’s most widespread virus/worm within 22 minutes.

The worm was released on September 18, 2001.[1] Due to the release date, exactly one week after the attacks on the World Trade Center and Pentagon, some media quickly began speculating a link between the virus and Al Qaeda, though this theory ended up proving unfounded.

Nimda affected both user workstations (clients) running Windows 95, 98, Me, NT, 2000 or XP and servers running Windows NT and 2000.

The worm's name origin comes from the reversed spelling of it, which is "admin".

F-Secure found the text[2] "Concept Virus(CV) V.5, Copyright(C)2001 werKBF" in the Nimda code. It contained 3 payloads, fortunately it could not execute all payloads and was unable to reach its maximum potential. First payload left a backdoor for the worm author to access at a later time. Second, it requested a predefined website and installed GT.fbircflood the IRCbot. Last move to itself to cylinder 0, head 0, sector 7 to make itself unrecoverable in effort remove and hide the worm aspect. Had the final payload had have worked it would have made this an extremely dangerous worm and made detection of it virtually impossible.


Contents

Methods of infection [edit]

Nimda was so effective partially because it—unlike other infamous malware like the Morris worm or Code Red—uses five different infection vectors:

  • via email
  • via open network shares
  • via browsing of compromised web sites
  • exploitation of various Microsoft IIS 4.0 / 5.0 directory traversal vulnerabilities. (Both Code Red and Nimda were hugely successful exploiting well known and long solved vulnerabilities in the Microsoft IIS server.[3])
  • via back doors left behind by the "Code Red II" and "sadmind/IIS" worms.

See also [edit]

Portal icon Computer security portal

References [edit]

  1. ^ http://www.cert.org/advisories/CA-2001-26.html CERT first released an advisory on the worm on September 18, 2001
  2. ^ http://www.f-secure.com/v-descs/nimda.shtml
  3. ^ http://seifried.org/lasg/introduction-to-security/

External links [edit]


Original courtesy of Wikipedia: http://en.wikipedia.org/wiki/Nimda — Please support Wikipedia.
A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia.
1257 videos foundNext > 

Nimda, Lion security hole, support scam bust, .CZ.CC takedown and RIP Steve - 60 Sec Security

Don't just read the latest security news - watch it in 60 seconds!

Graal how to get to nimda tutorial by shmoopie

YOU MUST KNOW GUILD HOUSE JUMP! this video shows you how to get to admin island or as many call it nimda this is my second video i try my best on quality. so...

NIMDA Co

DJ Nimda - TenMinMix 3 - Electro House - RauteMusik.FM - 10.04.2010

DJ Nimda - TenMinMix 3 - 10.04.2010 (Hildesheim, Germany) Style: Electro House Visit www.DJ-Nimda.de Equipment: - 2x Denon DN-S 1000 - Pioneer DJM 400 - Alle...

Nimda Industrial Animation MVR

Nimda Collection of animation movies produced by MVR: http://www.mvr.co.il/?categoryId=30729 972-9-866-57-21.

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS@NCW

CISCO VP(SECURITY) ANSWER TO NIMDA VIRUS QUERY @ NCW MANIKSHAW CENTER NEW DELHI 21 APR 2011.

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón

Nimda - VIRUSINSIDE - Virus Informáticos a la Vista - Lucas Torrón López - Musica Creative Commons: Enjoy the ride - Avastar.

przemo & nimda rc drift park team rc plock

Graal: Nimda Island

Sorry guys im just showing you what is on Nimda isle. Not how to. I will soon make a video on how to. This was just me and somr of the guild O W N E D we had...

NIMDA 16 01 13

1257 videos foundNext > 

3 news items
 
CGCSA host business breakfast at SAITEX - Bizcommunity
Bizcommunity.com
Wed, 15 May 2013 23:46:40 -0700

... discussion followed by an audience Q and A session. For more information on AB7 and SAITEX contact Lineke van der Brugghen, Exhibition Management Services on tel: +27 (0)11 783 7250, fax: +27 (0)11 783 7269, email. moc.acirfasnoitibihxe@nimda ...

Báo Khoa học

10 loại virus nguy hiểm nhất mọi thời đại
Báo Khoa học
Fri, 10 May 2013 03:05:23 -0700

Nimda. Loại virus này cũng xuất hiện năm 2001. Nimda là một loại sâu virus. Nó lây lan rất nhanh trên internet, và chỉ mất 22 phút sau khi xuất hiện, nó đã đứng hàng top những virus gây ra các cuộc tấn công được ghi nhận. Mục tiêu chính của loại virus ...
 
McAfee AVERT Stinger v.11.0.0.261 - утилита для удаления вирусов из Windows
iXBT.com
Wed, 24 Apr 2013 23:26:10 -0700

... W32/Elkern.cav, W32/Fizzer.gen@MM, W32/FunLove, W32/Klez, W32/Lirva, W32/Lovgate, W32/Lovsan.worm, W32/Mimail@MM, W32/MoFei.worm, W32/Mumu.b.worm, W32/MyDoom@MM, W32/Nachi.worm, W32/Nimda, W32/Pate, W32/Sdbot.worm.gen, ...
Loading

Oops, we seem to be having trouble contacting Twitter

Talk About Nimda

You can talk about Nimda with people all over the world in our discussions.

Support Wikipedia

A portion of the proceeds from advertising on Digplanet goes to supporting Wikipedia. Please add your support for Wikipedia!

Copyright © 2009-2013 Digparty. All rights reserved.

Digparty Home | FAQ | Privacy Policy | Terms of Service | Contact Us | Feedback