mvp yes. Evidently, it was written to steal internet usernames and passwords from dial up user accounts (they were still a thing in 2000). It only went “global” after the code was modified so it could be attached to outlook and spread via the address book.
This then lead to outlook blocking malicious attachments by default.