Last Updated: 2007-04-09 07:29:17 UTC
by Daniel Wesemann (Version: 5)
Update 2000 UTC: Filenames "video.exe", "click here.exe", "clickme.exe", "readme.exe" and "read more.exe" are also used, and occasionally it is neither the USA nor Israel, but Iran who has started World War III. Lovely.
Other MD5: 4a32764f9165980e255a80ee63edf402 (Thanks, Ariel!) and several other MD5 sums (19 and counting as of 0500 UTC)
Update 0500 UTC: AV coverage starting to become available: W32/Tibs.ET@mm (Fortinet), Email-Worm.W32.Zhelatin.cq , (Kaspersky/F-Secure), W32.Dref.AF (Sophos), and Trojan.Small-1604(Clamav). Of course also worth mentioning is Symantec, who (likely by sheer luck :) caught it early on, by detecting the packer: Trojan.Packed.13.