Virus type: Worm
Destructive: No
Aliases: W32/Nachi.worm.b
Description:
This memory-resident worm exploits certain vulnerabilities to propagate across networks. It takes advantage of the following Windows vulnerabilities:
Remote Procedure Call (RPC) Distributed Component Object Model (DCOM) vulnerability
WebDAV vulnerability
WEBDAV Buffer Overrun vulnerability
For more information about these vulnerabilities, please refer to the following Microsoft Web pages:
Microsoft Security Bulletin MS03-026
Microsoft Security Bulletin MS03-007
Microsoft Security Bulletin MS03-049
It patches the system against the RPC DCOM Buffer Overflow vulnerablity by checking the operating system version and locale information, and connecting to specific sites.
It attempts to delete several files, which it assumes to be related to the malware WORM_MYDOOM.A and WORM_MYDOOM.B.
This UPX-compressed malware runs on Windows 2000 and XP.
http://www.trendmicro.com/vinfo/virusencyclo/default5.asp?VName=WORM_NACHI.C

Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic