|Place of Origin||Unknown|
Email-Worm.Win32.Pikachu or Pikachu worm is the first worm aimed at children. It was sent in the form of an email, and named after the character existing in the Pokemon franchise. This worm spreads via the Internet using Microsoft Outlook and spreads in e-mail letters with the attached file "PikachuPokemon.exe". The worm itself is a Win32 EXE file written in Visual Basic 6.0, file size is about 32K. When the worm runs, first of all it overwrites the original C:\AUTOEXEC.BAT file with instructions that will delete all files in the Windows and Windows system directory. It displays Pikachu picture and some text:
Between millions of people around the world I found you. Don't forget to remember this day every time MY FRIEND!"
Then it searches the address book of Microsoft Outlook and creates, in the Outbox folder, letters for each e-mail address:
Subject: Pikachu Pokemon. Text: Great Friend! Pikachu from Pokemon Theme have some friendly words to say. Visit Pikachu at http://www.pikachu.com See you.
And to each letter, the worm attaches itself as the file PikachuPokemon.exe.
The worm was sent to everyone in that person's address book and would send the prompt: del c://WINDOWS. However, the virus was not well coded and windows would prompt the user to confirm the action.