The Web    Google
9/1: Bugbear-I a Mass-Mailing Worm

9/1: Bugbear-I a Mass-Mailing Worm
September 1, 2004

W32/Bugbear.i@MM is a new variant of W32/Bugbear. It bears the following characteristics:

  • mass-mails itself to recipient email addresses extracted from the victim machine. It attaches itself to outgoing emails within a ZIP file.
  • opens a port for remote access
  • May also drop a separate backdoor component

    Outgoing messages are formatted as follows:

    From: Spoofed (using harvested email addresses, and strings carried in the virus).
    Subject: Various, selected from those carried in the virus.
    Attachment: GIRLS.ZIP zip archive. This contains the worm with one of the several file names.

    View them and other information at McAfee page.

  • It's Time to Talk Mobile Phone Security
  • 1/5: Rbot-SQ Worm Has Backdoor Abilities
  • 8/20: Rbot-GS Exploits Vulnerabilities
  • Viruses Gearing up For The Smart Set
  • Cisco Warns of Voice Product Security Flaws
  • FTC Publishes Web Site on Fraud Cases
  • Christmas Comes Early for Spammers
  • 2/14: Dopbot-A Worm A Acts as IRC Bot
  • Robbing the (Data) Bank
  • 1/13: Expl_Iconex-A an Animated Cursor File
  • 1/27: StartPage-FX Trojan Modifies IE Settings
  • Security Camera Industry Information