Recent Posts

Community

Email Notifications

Personal Links

Archives

Security Protection - Harry Waldron (CS)

Security Best Practices, Breaking News, & Updates

Bagle/Beagle/Tooso - New BN Variant emerges


This new variant emerged over the weekend and the Tooso trojan that is dropped will block AV and other security repairs making this virus even more difficult to clean.  

Beagle.BN Description

Tooso - Security Blocking Trojan dropped by Beagle.BN

EMAIL TO AVOID/BLOCK

Attempts to email a copy of Trojan.Tooso.G to the email addresses contained in the downloaded file. The email has the following characteristics:

From: <Spoofed>

Subject: <Blank>

Message: The password is; Password:

Attachment:
Make.zip
Price.zip
Forest.zip
Verses.zip
Fairy_tale.zip
It_about_you.zip
I_know_you.zip


Additional attachment: An *.rar file contains an executable file named 123456.exe which is a copy of Trojan.Tooso.G. This is the executable that is responsible for downloading the mailer component.