Threat Description

Openstream.T

Details

Category: Malware
Platform: W32
Aliases: Openstream.T, Java/Openstream.T

Summary


Openstream.T is Java applet based trojan downloader, that will download and execute a trojan that will download spyware and adware into the system.



Removal


Automatic action

Once detected, the F-Secure security product will automatically disinfect the suspect file by either deleting it or renaming it.

More scanning & removal options

More information on scanning or removal options is available in the documentation for your F-Secure security product on the Downloads section of our Home - Global site.

You may also refer to the Knowledge Base on the F-Secure Community site for more information.

Contact Support

For further assistance, F-Secure customers can request support online via the Request support or the Chat forms on our Home - Global site.



Technical Details


Openstream.T comes in a signed Java JAR file, that will download and activate if user uses a web browser that supports Java. Before letting the trojan to execute the Java runtime, will ask user whether he wants the signed Java application to run.

If user answers no, the trojan will not execute.

If user answers yes, the trojan will download an Win32 EXE trojan that will download further trojans.

Openstream will run basically under any browser which supports Java, and probably also under other operating systems than Windows. However as the only payload the trojan has is downloading Win32 EXE, the trojan is harmless in other operating systems than windows.



Detection


Detection in F-Secure Anti-Virus was published on December 26th, 2004 in update:

Detection Type: PC
Database: 2004-12-26_01



Description Details: Jarno Niemela, March 14th, 2005;


SUBMIT A SAMPLE

Suspect a file or URL was wrongly detected? Submit a sample to our Labs for analysis

Submit Now

Give And Get Advice

Give advice. Get advice. Share the knowledge on our free discussion forum.

Learn More