1. /
  2. Security Response/
  3. W32.Beagle.O@mm

W32.Beagle.O@mm

Risk Level 2: Low

Discovered:
March 18, 2004
Updated:
March 18, 2004 5:08:37 PM
Systems Affected:
Windows 98, Windows 95, Windows XP, Windows Me, Windows NT, Windows 2000
W32.Beagle.O@mm is a mass-mailing worm that opens a backdoor on TCP port 2556 and uses its own SMTP engine to spread through email. The email attachment is a randomly named .exe file inside a .zip archive, a .rar archive, or a .pif archive. The embedded .exe file in the .zip or .rar archive is password-protected with a random password.

W32.Beagle.O@mm also attempts to spread across file-sharing networks, such as KazaA and iMesh, by dropping itself into the directories that contain "shar" in their names.

This variant also contains a file infection routine that infects portable executable files with an .exe extension.

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report
Symantec DeepSight Screensaver