[Full-Disclosure] msblast.exe

From: David Vincent (david.vincentat_private)
Date: Mon Aug 11 2003 - 13:37:16 PDT

Next message: Dave Ahmad: "DCOM worm analysis report: W32.Blaster.Worm"

Previous message: Bojan Zdrnja: "RE: Dig in: autorooter, maybe that IRC one but SAV doesnt pick it up."
Next in thread: Scott Fendley: "Re: [Full-Disclosure] msblast.exe"
Reply: Scott Fendley: "Re: [Full-Disclosure] msblast.exe"
Reply: Robert Ersoni: "RE: [Full-Disclosure] msblast.exe"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

i've just got a copy of this exe.  it matches the MD5 at
http://isc.sans.org/diary.html?date=2003-08-11 of
5ae700c1dffb00cef492844a4db6cd69.  that's the EXE's MD5, not the unpacked
version or the MD5 of the ZIP i received it in.

we've got NAV Corporate 8.00.0.9374 with scan engine 4.1.0.15 and
definitions of 06/08/2003 rev. 4 (the most current at this time) and it is
not detected.

David Vincent  CNA/MCSE
Network Administrator

www.mightyOaks.com
david.vincentat_private


MIGHTY OAKS WIRELESS SOLUTIONS INC.
209-3347 Oak Street
Victoria, B.C. Canada V8X 1R2 
Phone: 250.386.9398   Fax:  250.386.9399
Pager: 250.380.4575   Cell: 250.884.3000
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Next message: Dave Ahmad: "DCOM worm analysis report: W32.Blaster.Worm"
Previous message: Bojan Zdrnja: "RE: Dig in: autorooter, maybe that IRC one but SAV doesnt pick it up."
Next in thread: Scott Fendley: "Re: [Full-Disclosure] msblast.exe"
Reply: Scott Fendley: "Re: [Full-Disclosure] msblast.exe"
Reply: Robert Ersoni: "RE: [Full-Disclosure] msblast.exe"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Mon Aug 11 2003 - 14:48:39 PDT