Malware type: Backdoor

Aliases: Backdoor.Win32.Optix.Pro.10 (Kaspersky), BackDoor-ACH (McAfee), Backdoor.Trojan (Symantec), BDS/Optix.P11.B.Srv (Avira), Troj/Bdoor-ACH (Sophos), RemoteAccess:Win32/OptixClient (Microsoft)

In the wild: No

Destructive: Yes

Language: English

Platform: Windows

Encrypted: No

Description: 
This backdoor malware, written in Borland Delphi, categorized as a Remote Access Tool (RAT), uses a server program to infect a target system and then uses a client program to access and control the infected system. This tool requires that its server component is running on the infected machine before the client component can access the infected system.

Upon execution, the server program opens a port 3410 TCP, where it also waits for commands to execute form the client component.

For additional information about this threat, see:
Solution
Technical Details

Description created: Apr. 8, 2002 6:03:02 PM GMT -0800
Description updated: Apr. 8, 2002 8:23:53 PM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.