I am providing this example of the worm for those who may want to test antivirus programs or analyze its behavior. I found the file on a system in November of 2004. ClamAV identified it as Worm.Bagle.AT.
On March 19, 2014, I uploaded the file to VirusTotal.com, a site owned by Google which will you to upload files for free and have them checked by multiple antivirus programs. As of March 19, 2004, VirusTotal checks uploaded files with 51 different antimalware programs and reported 46 of those identified the submitted file as malware - see detection report.
Names assigned to this trojan:
Antivirus Program | Name | Update |
---|---|---|
AVG | I-Worm/Bagle.AX | 20140320 |
Ad-Aware | Worm.Generic.355400 | 20140320 |
Agnitum | I-Worm.Bagle.AY | 20140319 |
AhnLab-V3 | Win32/Bagle.worm.AM | 20140319 |
AntiVir | Worm/Bagle.AT.1 | 20140320 |
Antiy-AVL | Worm[Email]/Win32.Bagle | 20140319 |
Avast | Win32:Beagle-AQ [Wrm] | 20140320 |
Baidu-International | Worm.Win32.Bagle.atXn | 20140319 |
BitDefender | Worm.Generic.355400 | 20140320 |
Bkav | W32.BeagleAV.Worm | 20140318 |
ByteHero | Virus.Win32.Heur.c | 20140320 |
CAT-QuickHeal | W32.Bagle.AT | 20140319 |
CMC | Email-Worm.Win32.Bagle!O | 20140319 |
ClamAV | Worm.Bagle.AT | 20140319 |
Commtouch | W32/Bagle.gen!GSA | 20140320 |
Comodo | Worm.Win32.Bagle.AS | 20140320 |
DrWeb | Win32.HLLM.Beagle.based | 20140320 |
ESET-NOD32 | Win32/Bagle.AS | 20140320 |
Emsisoft | Worm.Generic.355400 (B) | 20140320 |
F-Prot | W32/Bagle.AP@mm | 20140320 |
F-Secure | Worm.Generic.355400 | 20140320 |
Fortinet | W32/Bagle.BC@mm | 20140320 |
GData | Worm.Generic.355400 | 20140320 |
Ikarus | Email-Worm.Win32.Bagle | 20140319 |
Jiangmin | I-Worm/BBEagle.at | 20140319 |
K7AntiVirus | EmailWorm ( 00003a421 ) | 20140319 |
K7GW | EmailWorm ( 00003a421 ) | 20140319 |
Kaspersky | Email-Worm.Win32.Bagle.at | 20140319 |
Kingsoft | Worm.Beagle.at.(kcloud) | 20140320 |
McAfee | W32/Bagle.bb@MM | 20140320 |
McAfee-GW-Edition | Heuristic.BehavesLike.Win32.Suspicious-BAY.G | 20140320 |
MicroWorld-eScan | Worm.Generic.355400 | 20140320 |
Microsoft | Worm:Win32/Bagle.AS@mm!CME473 | 20140319 |
NANO-Antivirus | Trojan.Win32.Bagle.cyek | 20140320 |
Norman | Bagle.AQ | 20140319 |
Panda | W32/Bagle.BC.worm!CME-473 | 20140319 |
Rising | PE:Worm.Mail.Bagle.nf!1073825259 | 20140319 |
Sophos | W32/Bagle-AU | 20140319 |
Symantec | W32.Beagle.AV@mm | 20140320 |
TheHacker | W32/Bagle.BB@MM | 20140319 |
TotalDefense | Win32/Bagle.AQ | 20140319 |
TrendMicro | WORM_BAGLE.GM | 20140320 |
TrendMicro-HouseCall | WORM_BAGLE.GM | 20140320 |
VBA32 | Trojan.Genome.sy | 20140319 |
VIPRE | Trojan.Win32.Generic!BT | 20140320 |
nProtect | Worm.Generic.355400 | 20140319 |
AegisLab | ✔ | 20140320 |
Malwarebytes | ✔ | 20140320 |
Qihoo-360 | ✔ | 20140320 |
SUPERAntiSpyware | ✔ | 20140320 |
ViRobot | ✔ | 20140319 |
Created: November 8, 2004