myITforum.com
Welcome to myITforum.com Sign in | Join | Help
in Search
Site Home Home Bloggers List Blogs Photos Downloads

Harry Waldron - My IT Forums Blog

Sharing Security Developments, and Best Practices for corporate and home users

Bagle/Beagle/Tooso - New BN Variant emerges


This new variant emerged over the weekend and the Tooso trojan that is dropped will block AV and other security repairs making this virus even more difficult to clean.  

Beagle.BN Description

Tooso - Security Blocking Trojan dropped by Beagle.BN

EMAIL TO AVOID/BLOCK

Attempts to email a copy of Trojan.Tooso.G to the email addresses contained in the downloaded file. The email has the following characteristics:

From: <Spoofed>

Subject: <Blank>

Message: The password is; Password:

Attachment:
Make.zip
Price.zip
Forest.zip
Verses.zip
Fairy_tale.zip
It_about_you.zip
I_know_you.zip

Additional attachment: An *.rar file contains an executable file named 123456.exe which is a copy of Trojan.Tooso.G. This is the executable that is responsible for downloading the mailer component.
Published Apr 16 2005, 10:29 PM by hwaldron

Comments

No Comments

This Blog

Syndication
Copyright - www.myITforum.com, Inc. - 2007 All Rights reserved.
Powered by Community Server (Commercial Edition), by Telligent Systems