Virus Database

I-Worm.Bagle.an

Description I-Worm.Bagle.an

This worm spreads via the Internet as an attachment to infected emails, and also via file-sharing networks.
It is almost identical to I-Worm.Bagle.al
It is compressed using PEX; the compressed file is 18436 bytes in size, and the uncompressed file is 24068 bytes in size.
Propagation via email
Infected messages:
Message header:
photo
Message body:
photo
The message body appears as an HTML page.
Attachment name:
foto.zip
fotos.zip
Attachment contents:
fotofoto.html fotofotofoto1.exe
The first file contains Exploit.CodeBaseExec
The second file contains TrojanDropper.Win32.Small.kv, which installs TrojanDownloader.Win32.Agent.cj on the victim machine. This program then downloads the main module of the worm.
Remote administration
The worm opens port 82 and listens for commands. This makes it possible for the author of the worm to download and launch files on the victim machine.
Other
File names, registry key values and the routines for propagating via file-sharing networks are identical to those of I-Worm.Bagle.al
The worm is programmed to cease functioning and to delete itself after 2nd September 2004.

Check other viruses! Be aware! Use Antiviral Software

Jacov family

Description Jacov family

These are harmless nonmemory resident encrypted parasitic viruses. They search for COM and EXE files, then write themselves to the end of the file, minor virus versions infect EXE files only. The viruses do not manifest themselves in any way, they contain the text string:
[jacov] (c) 1997 gothmog

Jain Family

Description Jain Family

These are very dangerous memory resident parasitic viruses. They trace and hook INT 21h, then write themselves the end of COM- and EXE-files that are executed. On 1st of May ("Jain.1437"), 22nd of June ("Jain.1536"), and 13th of July ("Jain.1614") erase hard drive sectors ("Jain.1437,1536" have the bugs, and halt the system while erasing). The viruses contain the internal text strings:
"Jain.1437,1536": 12.04.1994
"Jain.1614": 12.04.1994 JAIN S.

Home

Viruses from A to Z
0-9 A B Ñ D E F G H I J
K L M N O P Q R S T
U V W X Y Z

    Copyright © 2005 Virus-Database.com
© 2005 Virus-Database.com