« The Bagle botnet | Main | Nasty worm gives state computers indigestion »
In Depth Bagle Analysis
Jason Gordon, who runs the Infection Vectors website (a great complement to Wormblog, by the way), has written an in depth analysis of the Bagle worm. This is a good continuation of the writeup posted yesterday from Kaspersky Labs.
Beagle.A was discovered in late January 2004 and was an immediate success, spreading across the globe with a very simple infection strategy: just sending the worm as an attachment to a plain email message. Over the course of the spring, Beagle ran up over two dozen variants and thousands of compromised hosts.
Infectionvectors has published two in-depth reviews of Beagle and its development history, for details and commentary on the worm, see the first report, part two, and part three.
Beagle returned from a brief hiatus in early July 2004 with variants that attacked Internet hosts with a renewed ferocity. With even more success than previous versions, Beagle.X, AA, AB, and AO made special imprints on clients around the world, turning them into mail relaying robots.
Source: Beagle Alert, published on infectionvectors.com in March, 2005.
April 29, 2005 in Bagle, mass mailers, new trends, new worms, papers | Permalink
Tell others: digg submit
|
del.icio.us this
|
Reddit
