W32.Flamer has built-in modules to gather an enormous amount of information from compromised computers, well beyond that of any threat seen previously. These modules, referred to as 'apps'
Category: W32.Flamer
Flamer has a variety of ways of spreading on the local network. One of the methods is to hijack clients performing Windows Update. Three Flamer apps are involved in delivering the rogue update: SNA
Microsoft has released Security Advisory 2718704 in relation to Flamer. Flamer used a Microsoft supplied certificate to sign components of Flamer, which would chain up to the trusted Microsoft Root
Flamer has the ability to spread from one computer to the next. However, Flamer does not automatically spread, but instead waits for instructions from the attackers. Flamer can spread using the fol