Worm.Bagle.AT in Joke.scr

This Joke.scr file contains a worm which ClamAV identifies as Worm.Bagle.AT. If you open the file by double-clicking on it on a Windows system, you will infect that system with this worm, unless that system has up-to-date virus protection. By downloading this file, you are acknowledging that you are doing so at your own risk. Use zoo as the userid and malware as the password to access the file

I am providing this example of the worm for those who may want to test antivirus programs or analyze its behavior. I found the file on a system in November of 2004. ClamAV identified it as Worm.Bagle.AT.

On March 19, 2014, I uploaded the file to VirusTotal.com, a site owned by Google which will you to upload files for free and have them checked by multiple antivirus programs. As of March 19, 2004, VirusTotal checks uploaded files with 51 different antimalware programs and reported 46 of those identified the submitted file as malware - see detection report.

Names assigned to this trojan:

Generic Category (English)120x600
Antivirus ProgramNameUpdate
AVG1px I-Worm/Bagle.AX 20140320
Ad-Aware Worm.Generic.355400 20140320
Agnitum I-Worm.Bagle.AY 20140319
AhnLab-V3 Win32/Bagle.worm.AM 20140319
AntiVir Worm/Bagle.AT.1 20140320
Antiy-AVL Worm[Email]/Win32.Bagle 20140319
Avast Win32:Beagle-AQ [Wrm] 20140320
Baidu-International Worm.Win32.Bagle.atXn 20140319
BitDefender Worm.Generic.355400 20140320
Bkav W32.BeagleAV.Worm 20140318
ByteHero Virus.Win32.Heur.c 20140320
CAT-QuickHeal W32.Bagle.AT 20140319
CMC Email-Worm.Win32.Bagle!O 20140319
ClamAV Worm.Bagle.AT 20140319
Commtouch W32/Bagle.gen!GSA 20140320
Comodo Worm.Win32.Bagle.AS 20140320
DrWeb Win32.HLLM.Beagle.based 20140320
ESET-NOD32 Win32/Bagle.AS 20140320
Emsisoft Worm.Generic.355400 (B) 20140320
F-Prot W32/Bagle.AP@mm 20140320
F-Secure Worm.Generic.355400 20140320
Fortinet W32/Bagle.BC@mm 20140320
GData Worm.Generic.355400 20140320
Ikarus Email-Worm.Win32.Bagle 20140319
Jiangmin I-Worm/BBEagle.at 20140319
K7AntiVirus EmailWorm ( 00003a421 ) 20140319
K7GW EmailWorm ( 00003a421 ) 20140319
Kaspersky Email-Worm.Win32.Bagle.at 20140319
Kingsoft Worm.Beagle.at.(kcloud) 20140320
McAfee W32/Bagle.bb@MM 20140320
McAfee-GW-Edition Heuristic.BehavesLike.Win32.Suspicious-BAY.G 20140320
MicroWorld-eScan Worm.Generic.355400 20140320
Microsoft Worm:Win32/Bagle.AS@mm!CME473 20140319
NANO-Antivirus Trojan.Win32.Bagle.cyek 20140320
Norman Bagle.AQ 20140319
Panda W32/Bagle.BC.worm!CME-473 20140319
Rising PE:Worm.Mail.Bagle.nf!1073825259 20140319
Sophos W32/Bagle-AU 20140319
Symantec W32.Beagle.AV@mm 20140320
TheHacker W32/Bagle.BB@MM 20140319
TotalDefense Win32/Bagle.AQ 20140319
TrendMicro WORM_BAGLE.GM 20140320
TrendMicro-HouseCall WORM_BAGLE.GM 20140320
VBA32 Trojan.Genome.sy 20140319
VIPRE1px Trojan.Win32.Generic!BT 20140320
nProtect Worm.Generic.355400 20140319
AegisLab 20140320
Malwarebytes1px 20140320
Qihoo-360 20140320
SUPERAntiSpyware 20140320
ViRobot 20140319

Avast Premier 2016 Malwarebytes Anti-Malware Premium Stopzilla

Shop Amazon Local - Subscribe to Deals in Your Neighborhood

Valid HTML 4.01 Transitional

Created: November 8, 2004