Trouble with your email account, just open this passworded zip and !!!!!!!

L

LTR12101B

1
How long before the latest worm turns up in a cdrbase email account - it's hitting forum associated and ISP emails all over the place, and instead of the usual tack (see "celebrity name" naked etc,) - it now looks rather official, suggesting that there is a problem with or a complaint about your account.

The file is passworded, so it can't be scanned!

NEVER open unsolicited attachments, NO exceptions, even if you trust the supposed sender.
 
NoSpam

NoSpam

1
W32.Beagle.J@mm
Discovered on: March 02, 2004
Last Updated on: March 03, 2004 04:00:09 PM

W32.Beagle.J@mm is a mass-mailing worm that opens a backdoor on TCP port 2745 and uses its own SMTP engine to spread through email. It also sends the attacker the port on which the backdoor listens, as well as the IP address. W32.Beagle.J@mm also attempts to spread through file-sharing networks, such as Kazaa and iMesh, by dropping itself into the folders that contain "shar" in their names.

The email has the following characteristics:
From: spoofed to appear as though its coming from the one of the following addresses at the recipient's domain:

management
administration
staff
noreply
support
Attachment: A randomly named .exe file, inside a .zip file, or an .pif file. The zip file will be password-protected.

--------------------------------------------------------------------------------
Note:
LiveUpdate virus definitions released on 3/1/04 detect this threat as W32.Beagle.A@mm.
No static MD5 available for this threat.
Symantec Security Response has developed a removal tool to clean the infections of W32.Beagle.J@mm.

--------------------------------------------------------------------------------

Also Known As: W32/Bagle.j@MM [McAfee], WORM_BAGLE.J [Trend], Win32.Bagle.J [Computer Associates], W32/Bagle-J [Sophos]
Variants: W32.Beagle.I@mm
Type: Worm
Infection Length: 12,288 bytes

Systems Affected: Windows 2000, Windows 95, Windows 98, Windows Me, Windows NT, Windows Server 2003, Windows XP
Systems Not Affected: DOS, Linux, Macintosh, OS/2, UNIX, Windows 3.x

Protection:
Virus Definitions (Intelligent Updater) *
March 02, 2004

Virus Definitions (LiveUpdate™) **
March 02, 2004

* Intelligent Updater definitions are released daily, but require manual download and installation.
Click here to download manually.

** LiveUpdate virus definitions are usually released every Wednesday.
Click here for instructions on using LiveUpdate.


Read the entire write-up at _http://securityresponse.symantec.com/avcenter/venc/data/w32.beagle.j@mm.html

NoSpam
 
Last edited:
You must log in or register to reply here.
Top