Technology Info, Tips, FAQs
You Can Use

Virus Information

W32.Beagle.J@mm
Virus Alert

Aliases: W32/Bagle.j@MM [McAfee]

Virus Alert - March 3, 2004

W32.Beagle.J@mm is a mass-mailing worm that opens a backdoor on TCP port 2745 and uses its own SMTP engine to spread through email. It also sends the attacker the port on which the backdoor listens, as well as the IP address.

W32.Beagle.J@mm also attempts to spread through file-sharing networks, such as Kazaa and iMesh, by dropping itself into the folders that contain "shar" in their names.

The email has the following characteristics:

From: email address spoofed to appear as though its coming from the one of the following addresses at the recipient's domain:

• management
• administration
• staff
• noreply
• support

Attachment: A randomly named .exe file, inside a .zip file, or an .pif file. The zip file will be password-protected.

More details including a removal tool can be found at
http://securityresponse.symantec.com/avcenter/venc/data/w32.beagle.j@mm.html

back to Technology Content Index

Return to DAWN Ontario

Events Calendar
events, conferences etc

Featured News & Alerts

What's New
additions to the site indexed daily

Contact Us

Sign our Guestbook!

Website created & maintained
courtesy of Barbara Anello

DAWN Ontario
Box 1138 North Bay, ON P1B 8K4