検索:
ホーム   »     »   Proving the Evolution of the Bagle

Proving the Evolution of the Bagle

  • 投稿日:2005年10月12日
  • 脅威カテゴリ:未分類
  • 執筆:ウイルス解析担当者
0

We found an interesting bagle-related site
that installs a Trojan, detected as TROJ_AGENT.ABT, which downloads and executeBKDR_VIPGSM.C. BKDR_VIPGSM interests us since
it is speculated to be related to the Bagle and only one group made
these malwares. Furthermore, BKDR_VIPGSM.C drops and executes a
file detected as WORM_BAGLE.GEN. (hmmm interesting)


However, upon further investigation, the file detected as
WORM_BAGLE.GEN does not replicate itself. It only had codes similar
to the Bagle worm but does not have a mass mailing routine and is
now detected as as TROJ_HARBAG.B.


There was also an interesting discussion in the KAV
blog
that discussed about the possible relations of this
malware to the Bagle worm. Thus, the malwares mentioned above can
be another proof that the speculation can possibly be true.

No related posts.



  • 個人のお客さま向けオンラインショップ
  • |
  • 法人のお客さま向け直営ストア
  • |
  • 販売パートナー検索
  • Asia Pacific Region (APAC): Australia / New Zealand, 中国, 日本, 대한민국, 台灣
  • Latin America Region (LAR): Brasil, México
  • North America Region (NABU): United States, Canada
  • Europe, Middle East, & Africa Region (EMEA): France, Deutschland / Österreich / Schweiz, Italia, Россия, España, United Kingdom / Ireland
  • 電子公告
  • ご利用条件
  • プライバシーポリシー
  • Copyright © 2021 Trend Micro Incorporated. All rights reserved.