ELF_WANUK.A Virus - attacks on the 13th of the Month

May 14, 2008

A friend of mine - we’ll call him Mr.B for convenience sake - had consulted with me about this message he saw on his Solaris machine. An ASCII-art of a teddy bear came up with a message: please hug me, fu**er! All of a sudden some other telnet sessions were invoked and that scared the sh!t outta my friend! He shut off the machine but not before he took a screengrab and forwarded the same to me.

Now I am no security whiz or an hacking expert but I do know where to get some relevant information from and of course how to get it :cool: So some hi-tech digging later, it was found to be the handiwork of the ELF_WANUK.A virus that takes advantage of a known vulnerability in Sun Solaris. The moot point here was the fact that the virus, when executed on the 13th of the month, sends out a random message to all logged-in users on a telnet session. And this was the exact same message that my friend had received on his Solaris box……proof that the ELF_WANUK.A malware was loose amidst his network. And yesterday was the 13th of May!!! Poor guy…almost fainted with the shock! Of course, he was relieved after I’d told him all of the above but the conceited individual he is, he’s no doubt pushing across this information to his network admins as his own findings! Sigh!

More Information about this virus can be found on this Trend Micro page.

Entry Filed under: Awareness, Happenings, Info, Musings, Random Thoughts, Tech, Web Travails. Tags: , , , , , , , , .

3 Comments Add your own

  • 1. Mr.B  |  May 15, 2008 at 11:34 pm

    Hey! Today I have removed another worm from moi system named “sujin.com.np” which came from some USB flash drive.

  • 2. Mr.B  |  May 15, 2008 at 11:37 pm

    My network admin got this abt ELF much bfore i sent him tht.

  • 3. Chittaranjan  |  May 16, 2008 at 12:02 am

    Ah! He must be as smart (if not smarter than) Me :cool:

Leave a Comment

Required

Required, hidden

Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Trackback this post  |  Subscribe to the comments via RSS Feed

Calendar

May 2008
M T W T F S S
« Apr   Jun »
 1234
567891011
12131415161718
19202122232425
262728293031  

Da Traxx

Da Punkymoodz

Links

Da Metrics

Da Bouquets & Brickbats

Da Oldiez

Da Clustr

Da Category Cloudz

Advertising Awareness Blogging Career Chronicles Champions League Cricket Current Affairs Da Blogrollz Daily Rants EPL EURO 2008 Ferrari Festivals FIFA World Cup Firefox Firefox 3 Food Football Force India Formula 1 FormulaOne Fun Gadgets Games Happenings Hutch Hyderabad India Info Kimi Raikkonen Life McLaren Mobile Moviez Music Musings Previews Radio Random Random Thoughts Reminiscence Reviews Soccer Sports Tech Television Travelogue Video Web Travails Windows Wordpress

Da del.icio.us Stuff

RSS Twitterz

RSS Da Formula One

RSS Da Grand Prix

RSS Itwofs

RSS Da Comicz

Da Costz


My blog is worth $10,726.26.
How much is your blog worth?

Da Flickr Snapz

Tirangaa Subzi

Wonderla Bird's Eye View

Wonderla Top View I

Wonderla Top View II

Wonderla Top View III

More Photos

Da Onlinez

Wierd Wired World's Wisitors!

Da Licencez

Creative Commons License

This work is licensed under a Creative Commons Attribution-ShareAlike 2.5 License

Da Gateway