It does seem to be a very gentlemanly virus. It asks for your permission before infecting and is not destructive.
Duts is a 1520 bytes long program, hand written in assembly for the ARM processor. When an infected file is executed the virus asks for permission to infect:
WinCE4.Dust by Ratter/29A
Dear User, am I allowed to spread?
When granted the permission, Duts attempts to infect all EXE files in the current directory. Duts only infects files that are bigger than 4096 bytes and have not been infected yet. As an infection marker the virus writes the string 'atar' to the Windows Version field of the EXE header.
A new study result seems to point to this. Serverside.NET has the full story.
Based on numbers quoted by John Montgomery, Program Manager at Microsoft, more than 60 of the Fortune 100 use .NET for internal development. A Forrester report also states that 56% of enterprises in North America are choosing .NET as opposed to only 46% choosing J2EE.
An interesting note, of the ~6 Million developers currently targeting the Windows platform, over 4 Million of those are Visual Basic developers.