W32.Beagle.AQ@mm (Symantec.com)

Discovered on: August 31, 2004
Last Updated on: September 02, 2004 04:50:38 PM

W32.Beagle.AQ@mm is a variant of W32.Beagle.AO@mm, which is a mass-mailing worm that uses its own SMTP engine to spread. The email attachment is a downloader, similar to Trojan.Mitglieder and Download.Ject.C, that downloads the worm from an external source.

The worm also contains backdoor functionality, opening TCP port 80 and UDP port 80.

Note: Virus definitions dated September 1, 2004 or earlier may detect portions of this threat as Download.Ject.D.

Variants:                       W32.Beagle.AQ@mm
Type:                             Worm
Infection Length:          12,800 bytes, 18,436 bytes, 9,728 Bytes. 4,996 Bytes, 9,728 Bytes
Systems Affected:        Windows 2000, Windows 95, Windows 98, Windows Me,
                                      Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, Macintosh OS X, Novell Netware,
                                      OS/2, UNIX

More information on Symantec Security Response site:
http://securityresponse.symantec.com/avcenter/venc/data/w32.beagle.aq@mm.html

Source : Symantec Corporation
www.symantec.com

2004-09-03 12:19

Back

IT News: