This new variant emerged over the weekend and the Tooso trojan that is dropped will block AV and other security repairs making this virus even more difficult to clean.
Beagle.BN Description http://www.symantec.com/avcenter/venc/data...email@example.com
Tooso - Security Blocking Trojan dropped by Beagle.BN http://securityresponse.symantec.com/avcen...an.tooso.g.html
EMAIL TO AVOID/BLOCK
Attempts to email a copy of Trojan.Tooso.G to the email addresses contained in the downloaded file. The email has the following characteristics:
Message: The password is; Password:
An *.rar file contains an executable file named 123456.exe which is a copy of Trojan.Tooso.G. This is the executable that is responsible for downloading the mailer component.