NEWS FROM THE LAB - Monday, August 9, 2004

New Bagle spam run Posted by Mikko @ 18:31 GMT

It looks like the Bagle gang has spammed a new variant of Bagle widely an hour or two ago. The emails contain a ZIP archive as an attachment with a name like new_price.zip, price_new.zip, price_08.zip etc.

The archive has a HTML file and a hidden EXE file inside.