A new worm afflicting Windows users poses as an iTunes-related file, according to security firm Trend Micro. The worm is being circulated through AOL Instant Messenger (AIM), and doesn’t cause any problems for Mac users.
The file is called “WORM_OPANKI.Y” and is being spread in a file called “iTunes.exe.” This attempts to deceive users into thinking the worm is “associated with a legitimate product,” according to the security firm.
“This worm has backdoor capabilities. It opens a random TCP port and connects to the Internet Relay Chat (IRC) server xyz.legi0n.net. Once connected, it joins the IRC channel #fate, where it listens for commands from a remote malicious user. It then executes these commands locally on affected machines,” said Trend Micro in its
threat advisory. The company rates the worm’s risk as “low,” and while noting that it’s in the wild, said it’s not destructive.