NEWS FROM THE LAB - Wednesday, September 1, 2004

One more Bagle distribution Posted by Katrin @ 00:33 GMT

Shortly after Bagle.AK has been found, another slightly modified and recompiled version of it has been spammed. This one uses cacl.exe instead of foto.exe. The accompanying foto.htm file is simple and just runs the exe file.

We've published detection for this malware in update Version=2004-09-01_01