検索:
ホーム   »     »   TROJ_BAGLE.CD On The Loose

TROJ_BAGLE.CD On The Loose

  • 投稿日:2005年12月17日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

Just a while back, we received about 1000++ spammed emails with zipped attachment within an hour. The attachment is a sample of the infamous trojan bagle which is to be detected as TROJ_BAGLE.CD. This malware drops “anti_troj.exe” in the %system% directory then creates a registry entry to enable the execution of the malware upon system startup.


Click the following link for the email details: TROJ_BAGLE.CD


Update (JoneZ, 16 December 2005 03:15:35)

After merely 5 hours, we received another wave of trojan bagle. The attachments have similar behavior but differ in MD5 hash. The filename of the unzipped file attachments also differs, the first sample is S3700020.exe while the second is DSC00017.exe.


Update (JoneZ, 16 December 2005 05:05:14)

We already have the sample for the possible worm component of these troj_bagles. Sample already forwarded to the Service Team for processing.


Update (JoneZ, 16 December 2005 06:59:36)

The VR for TROJ_BAGLE.CD is already posted here and the worm component will be detected as WORM_BAGLE.CD.


No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.