We're gradually updating threat actor names in our reports to align with the new weather-themed taxonomy. Learn about Microsoft threat actor names
Worm:Win32/Samael.A
Detected by Microsoft Defender Antivirus
Aliases: Mal/VB-F (Sophos) Worm.Win32.AutoRun.nlc (Kaspersky) W32/Generic!worm (McAfee) :W32/Samal.A (Panda) W32.SillyFDC (Symantec)
Summary
Worm:Win32/Samael.A is a worm that spreads in all writeable drives in the system. It modifies the system's NTLDR file, which is a Windows boot file, in such a way that may possibly lock the user out of the system. It also drops another malware in the system.
Manual removal is not recommended for this threat. To detect and remove this threat and other malicious software that may have been installed, run a full-system scan with an up-to-date antivirus product such as the Microsoft Safety Scanner (http://go.microsoft.com/fwlink/?LinkId=212742). For more information, see http://www.microsoft.com/protect/computer/viruses/vista.mspx.
Follow us
