Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Retro virus - a danger to physical media

Retro virus - a danger to physical media

by Nikola Strahija on October 24th, 2004 A "retro" virus by the name of Bacros, which spreads by floppy disks and CD-ROMs, is spreading all across Scandinavia and was first spotted a month ago.


Its mean of replication is a throwback to the virus propagation techniques of the 1990s. This illustrates its marked difference from the latest generation of email, file sharing or network exploit-based worms. However some things don't change: Bacros infects Windows PCs only.

The virus copies itself to all floppy disks it sees and also attempts to burn itself to CD-R disks (complete with an AUTORUN file, which will run the virus when the CD-R is inserted to another machine). Unlike current worms - which often try to take over user's machines, Bacros caries a destructive payload it overwrites any GIF image files it finds on infected PC with an image that says "KUOLE JEHOVA" ("Die Jehovah" in Finnish). On Christmas Day, Bacros attempts to delete all the files on an infected PC's hard disk.

In addition to spreading on physical media, the virus also works as a companion virus, attacking TXT files. For example, when the virus finds a file called README.TXT, it will make that file hidden and drop a new file called README.EXE in the same directory. Bacros is not yet widespread, but the number of infected PC grows everyday.


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »