Warning message... Link to action
Informational message... Link to action
Aliases: Win32/Chir.B@mm (AVG) W32.Chir.B@mm (Symantec) W32/Chir.B (Avira) W32/Chir-B (Sophos) Worm.Chir!292A (Rising AV) WORM_CHIR.DI (Trend Micro)
Windows Defender detects and removes this threat.
This email worm spreads as an attachment to an email. It can also spread via an infected network or removable drive, such as a USB flash drive. When you open the attachment or file, the worm will run.
The worm can also exploit a vulnerability discussed in Microsoft Security Bulletin MS01-020. This can allow the attachment to automatically open when the email is read or previewed on a vulnerable PC. You should download and use the latest version of Internet Explorer to avoid this vulnerability.