Troj/BagleDl-BJ is a Trojan for the Windows platform.
When first run, the Trojan creates the files im_1.exe and im_2.exe in the Windows system folder and then runs them. The Trojan also creates a JPG image in the <Temp> folder with the filename "~<random digit>.jpg" and displays the image. The files im_1.exe and im_2.exe are also detected as Troj/BagleDl-BJ.
Troj/BagleDl-BJ is a Trojan for the Windows platform.
When first run, the Trojan creates the files im_1.exe and im_2.exe in the Windows system folder and then runs them. The Trojan also creates a JPG image in the <Temp> folder with the filename "~<random digit>.jpg" and displays the image. The files im_1.exe and im_2.exe are also detected as Troj/BagleDl-BJ.
The Trojan attempts to download files from several remote sites.
The following registry entry is created to run the Trojan each time a user logs on:
HKCU\Software\Microsoft\Windows\CurrentVersion\Run
im_autorn
"<Windows system folder>\im_1.exe"
The following registry entry is also created:
HKCU\Software\Microsoft\IME
FirstRun
dword:00000001