Open main menu

Christmas Tree EXEC was the first widely disruptive computer worm, which paralyzed several international computer networks in December 1987.[1]

Written by a student at the Clausthal University of Technology in the REXX scripting language, it drew a crude Christmas tree as text graphics, then sent itself to each entry in the target's email contacts file. In this way it spread onto the European Academic Research Network (EARN), BITNET, and IBM's worldwide VNET. On all of these systems it caused massive disruption.

The core mechanism of the ILOVEYOU worm of 2000 was essentially the same as Christmas Tree, although it ran on PCs rather than mainframes, was spread over a different network, and was scripted using VBScript rather than REXX.

The name was actually "CHRISTMA EXEC" because the IBM VM systems originally required file names to be formatted as 8+space+8 characters. Additionally, IBM required REXX script files to have a file type of "EXEC". The name is sometimes written as "CHRISTMAS EXEC" (adding a 9th character) to make the name more readable. The user was prompted to: "...just type CHRISTMAS..."—and this in fact launched the "worm".

It displays this message when the program is run and then forwards itself to mailbox addresses contained in the user's address file.[2]

          *************                A
           ***********                VERY
       *******************            HAPPY
         ***************            CHRISTMAS
     ***********************         AND MY
       *******************         BEST WISHES
   ***************************     FOR THE NEXT
             ******                    YEAR

See alsoEdit


  1. ^ Tom Scott (2015-12-21). "A Christmas Computer Bug, and the Future of Files" (video). YouTube. Retrieved 2017-11-05.
  2. ^ "Viruses for the 'Exotic' Platforms (VX heaven)". Archived from the original on 2013-08-06. Retrieved 2017-03-07.

Further readingEdit

External linksEdit