As of October 29, 2004, 2:07 AM (-7:00; Daylight Saving Time), TrendLabs has declared a Medium Risk Virus Alert to control the spread of WORM_BAGLE.AT. TrendLabs has received several infection reports indicating that this malware is spreading in Japan, Sweden, China and Germany.
This worm uses its own SMTP engine to propagate via email. It arrives as either of the following attachments:
This worm searches the drive for folders with names containing the string "shared". It then drops itself in these shared folders using certain file names.
For more information on WORM_BAGLE.AT, you can visit the Trend Micro Web site.