Posted: 19th Jan, 2004 By: MarkJ
It looks as if we could be about to see the first of 2004's big viruses with the rapid spread of W32/BAGLE@MM. The worm harvests any e-mail addresses on your computer and sends itself on, while also opening up a backdoor for others to gain access to your PC:
The worm spoofs the 'from' field in emails it sends, which means it may appear to have come from someone you know," the company said in a statement.
The worm includes a back door component that listens on TCP port 6777. This allows an attacker to upload and execute arbitrary programs on infected computers.
Users should delete any email containing the following:
From: (address may be forged)
Subject: Hi
Body:
Test =)
(random characters)
--
Test, yep.
Attachment: (random filename) 15,872 bytes
example:
frjujs.exeMore @
VNUNet.