Bagle.at tries to download and execute TrojanDownloader.Win32.Small32.zj. New variant of Small.Bagle.Zj links to compromised sites now active. The links were inactive up to now, but some of the links are active again today. The worm is a new variant of the Small.giant worm that tries to connect to compromised websites and downloads Trojan downloader. Win32.win32.j. The payload is a payload for the SmallGiant.at worm.”]
Source: https://securelist.com/bagle-at-links-to-compromised-sites-now-active/29870/