Type of file by virus

[LunarWolf]

I would like to ask this question.

Does all virus or malware is in the form of *.exe?

[rnbv424140]

most of the virus I see are in .exe

[hellnoire]

I've seen some with double file extentions (.mp3.exe) but most times, yes, that's how it goes.

[evilfantasy]

Malware works with any executable file including audio and video files.

Executable file extensions. >>See here<< (not a complete list of all executable files) >More here<

[LunarWolf]

So a virus not necessary be in exe form? Am I right?

[xje4bv]

Yes. There are binders where you can bind a virus to another file, where for instance if you click a picture, it will silently run the binded exe. I believe there was such an exploit in Vista which has been patched.

[alpha1]

There are many of extensions for malware creator he uses not only exe there are extensions like .bat, .com, .dll and many others.

[Ceyfer √]

Yes. There are binders where you can bind a virus to another file, where for instance if you click a picture, it will silently run the binded exe. I believe there was such an exploit in Vista which has been patched.

Another jpeg exploit:

JPG Vulnerability Exploit ( Exploit-MS04-028 )

I've seen some with double file extentions (.mp3.exe) but most times, yes, that's how it goes.

That is known as Double Extension

A way to trick users into opening a virus. Many people have learned that text files (.TXT) and image files (.GIF, .JPG, etc.) are safe to launch because they are data and not executable software. They have learned to be leery of .EXE, .VBS and other extensions that are executed immediately. Thus, virus writers try to trick more people using double extensions, so "I LOVE YOU.TXT.vbs" is really not a .TXT file, but a .vbs file, a Visual Basic Script that is executed immediately. - ZDnet

Some of the well-known "Dangerous" Extension

Code:

 FILE EXTENSIONS

  Executables (potentially dangerous)
    Know what you are opening!
    .EXE  (machine language)
    .COM  (machine language)
    .VB   (Visual Basic script)
    .VBS  (Visual Basic script)
    .VBE  (Visual Basic script-encoded)
    .CMD  (batch file - Windows)
    .BAT  (batch file - DOS/Windows)
    .WS   (Windows script)
    .WSF  (Windows script)
    .SCR  (screen saver)
    .SHS  (OLE object package)
    .PIF  (shortcut to DOS file plus code)
    .HTA  (hypertext application)
    .JAR  (Java archive)
    .JS   (JavaScript script)
    .JSE  (JScript script)
    .LNK  (shortcut to an executable)
    Text (safe)
    .TXT
    
Images (safe) but prone to exploit
    Following are common image file types.
    There are many others (see graphics formats).
    .GIF
    .JPG
    .BMP
    .PNG
    .AI
    .WMF
    .TIF
    .EPS
    .PCX
    .DXF

 Data (potential problem)
    .XLS  (Excel) Can contain macros that execute.
    .DOC  (Word) Can contain macros that execute.

Other Data (safe)
    Data are processed, not executed, and are thus
    theoretically safe.  There are hundreds of data
    file types 

Source: ZDnet definition

[fletch]

They can also use JavaScript or VBScript to wright virus script in emails or web pages

[xyzseven]

I think only .exe files can be virus