This application requires Javascript for optimal performance.

W32/Mytob.fam!worm - Released Apr 07, 2005 - Last Updated Mar 13, 2007

Alias/es

W32/Mytob.A-net, W32/MyTob.AA-net, W32/MyTob.AB-net, W32/MyTob.AN-net, W32/MyTob.AP-net, W32/MyTob.AU-net, W32/Mytob.AV-net, W32/MyTob.B-net, W32/MyTob.BB-net, W32/MyTob.BE-net, W32/MyTob.BH-net, W32/MyTob.BH.fam-mm, W32/MyTob.BI-net, W32/MyTob.BK-net, W32

Detection Availability

Active DatabaseExtended Database
FortiGate
low
high
FortiClient
FortiMail N/A

Visible Symptoms

This is a generic detection for files that appear to resemble variants of the W32/MyTob family of viruses. Files identified as "Possible_Mytob" should be sent to Fortinet for research and analysis.

The detection is based on features or characteristics of the file such as its encryption algorithm, restrictions on file size, section sizes and so on.

Detailed Analysis

This is a generic detection for files that appear to resemble variants of the W32/MyTob family of viruses. Files identified as "Possible_Mytob" should be sent to Fortinet for research and analysis.

The detection is based on features or characteristics of the file such as its encryption algorithm, restrictions on file size, section sizes and so on.

Recommended Action



    FortiGate systems:

  • check the main screen using the web interface to ensure the latest AV/NIDS database has been downloaded and installed -- if required, enable the "Allow Push Update" option


Reference: ID - 103138