Virus

Analysis

This detection covers several variants of the W32/Klez virus. The variants vary little yet perform the same main actions as the other variants in this family. The main spreading mechanism is mass-mailing.
The virus creates email messages using an exploit against pre-MS01-020 systems. Emails previewed or opened containing the virus attachment could automatically launch on applicable Windows systems.

Recommended Action

Check the main screen using the web interface for your FortiGate unit to ensure that the latest AV/NIDS database has been downloaded and installed on your system - if required, enable the "Allow Push Update" option.

ID	322834
Released	Nov 17, 2004
Description Updated	Nov 17, 2004
Aliases	W32/Klez_Family@mm
Platform Profile	Win32 file format / PE 32 bit

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

W32/Klez_Family@mm

Analysis

Recommended Action

Telemetry

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Virus

W32/Klez_Family@mm

Analysis

Recommended Action

Telemetry

Threat Intelligence
Center