The worm Mimail.C is still spreading and a new variant has appeared: Mimail.D

The e-mail worm Mimail.C is still spreading all over the world. However, it is not an epidemic right now. It has been affecting users from Spain, Uruguay, Chile, Bolivia and Venezuela. As the virus is capable of launch DoS Denial of Service) attacks against web servers, it is possible that it activity will be increased at the beginning of the week.

The behaviour of this new worm is very similar to the first variant W32/Mimail. It spreads via e-mail in a message with the following characteristics:

* Sender:
admin@%domain%
(%domain% is the domain of the user's e-mail address.)

* Subject:
Your account xxxxxxx
(xxxxxxx is a group of random lower-case letters.)

* Message:
Hello there,
I would like to inform you about important information regarding your email address. This email address will be expiring. Please read attachment for details.
---
Best regards, Administrator
xxxxxxxx

* Attachments:
message.zip

* In addition, the message includes the high priority flag.

Mimail.D searches for e-mail addresses, in order to send out a copy of itself using its own SMTP engine. Also have a look at the news at the homepage