Threat Description

Openstream.T

Details

Aliases:Openstream.T, Java/Openstream.T
Category: Malware
Type:
Platform: W32

Summary



Openstream.T is Java applet based trojan downloader, that will download and execute a trojan that will download spyware and adware into the system.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More

You may wish to refer to the Support Community for further assistance. You also may also refer to General Removal Instructions for a general guide on alternative disinfection actions.



Technical Details



Openstream.T comes in a signed Java JAR file, that will download and activate if user uses a web browser that supports Java. Before letting the trojan to execute the Java runtime, will ask user whether he wants the signed Java application to run.

If user answers no, the trojan will not execute.

If user answers yes, the trojan will download an Win32 EXE trojan that will download further trojans.

Openstream will run basically under any browser which supports Java, and probably also under other operating systems than Windows. However as the only payload the trojan has is downloading Win32 EXE, the trojan is harmless in other operating systems than windows.



Detection


Detection in F-Secure Anti-Virus was published on December 26th, 2004 in update:
Detection Type: PC
Database: 2004-12-26_01



Description Created: Jarno Niemela, March 14th, 2005;


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More