Threat Database Worms Worm:VBS/Tibni.A

Worm:VBS/Tibni.A

By CagedTech in Worms

Threat Scorecard

Ranking: 13,212
Threat Level: 50 % (Medium)
Infected Computers: 425
First Seen: September 2, 2015
Last Seen: July 20, 2023
OS(es) Affected: Windows

The Worm:VBS/Tibni.A malware falls in the category of worms written in Visual Basic language that allows it to run on all Windows versions and can load from corrupted documents. Worm:VBS/Tibni.A is deployed as an attached document to spam mail that usually is fake invoices, tax notifications and confirmations from Amazon. The Tibni worm can spread to other computers by infecting USB drives, shared drives and memory cards and can be hard to remove. The Worm:VBS/Tibni.A malware is designed to give its operator a remote control of your computer and may install the following files: wscript.exe, bin.doc, bizo.mp3, Nouveau Dossier.lnk, Zain, and Photo0.jpg. The Tibni worm edits the Windows Registry values of infected users so that it will start every time you turn on your PC. Also, Worm:VBS/Tibni.A may place corrupted shortcuts on your desktop that look as shortcuts for Google Chrome, Opera, Internet Explorer, Mozilla Firefox and Safari. The Tibni worm may try to download a list of instructions from Bahaty.com/red/e.php and send information like your system configuration to its Command-and-Control servers. An infection with Worm:VBS/Tibni.A may result in data loss, financial fraud and you may lose control over your social media profiles. Threats like Worm:VBS/Tibni.A, Worm:VBS/Serverons.A and Email-Worm.VBS.Gedza are usually a part of officiated attacks at companies, small businesses and in rare cases individual targets. Users that suspect an intrusion by Worm:VBS/Tibni.A should take immediate action and might want to install a reputable anti-malware shield to prevent security breaches and clean their system.

Trending

Most Viewed

Loading...