Backdoor:Solaris/Wanukdoor.A

Aliases:

Category:
Type:
Platform:

Malware
Backdoor
Solaris

Summary

Backdoor:Solaris/Wanukdoor.A is dropped by Worm:Solaris/Wanuk.A. It opens port 32982 which provides access to a remote user.

Disinfection & Removal

Allow F-Secure Anti-Virus to disinfect the relevant files.

For more general information on disinfection, please see Removal Instructions.

Technical Details

This malware is being dropped by Worm:Solaris/Wanuk.A as its backdoor component. It opens port 32982 that provides access to a remote user. If the remote user is successfully connected to a targeted machine, he will receive a message "OK" otherwise he will receive "E". This backdoor gives a shell window to a remote user in which he can execute arbitrary commands.

Submit a sample

Wondering if a file or URL is malicious? Submit a sample to our Lab for analysis via the Sample Analysis System (SAS)

Submit

F-Secure Community

Give advice. Get advice. Share the knowledge on our free discussion forum.

Go to Community

Backdoor:Solaris/Wanukdoor.A

Summary

Disinfection & Removal

Technical Details

Submit a sample

F-Secure Community

Protecting the irreplaceable

Protection

Analysis

Downloads

Support

News & feeds

Connect

About F-Secure

Information

Visit also

F-Secure for consumers

F-Secure for operators

F-Secure for business

F-Secure Corporation