1. /
  2. Security Response/
  3. OSX.Tored@mm


Risk Level 1: Very Low

May 5, 2009
May 11, 2009 4:42:18 PM
Also Known As:
Infection Length:
2,236,384 bytes
OSX.Tored@mm is a worm that attempts to spread through network shares and by email. It also opens a back door on the compromised computer.

Antivirus Protection Dates

  • Initial Rapid Release version May 5, 2009 revision 019
  • Latest Rapid Release version May 5, 2009 revision 019
  • Initial Daily Certified version May 5, 2009 revision 022
  • Latest Daily Certified version May 5, 2009 revision 022
  • Initial Weekly Certified release date May 6, 2009
Click here for a more detailed description of Rapid Release and Daily Certified virus definitions.

Threat Assessment


  • Wild Level: Low
  • Number of Infections: 0 - 49
  • Number of Sites: 0 - 2
  • Geographical Distribution: Low
  • Threat Containment: Easy
  • Removal: Easy


  • Damage Level: Low
  • Payload: Opens a back door.
  • Large Scale E-mailing: Attempts to email itself to gathered email addresses.
  • Releases Confidential Info: Logs keystrokes.
  • Degrades Performance: Participation in distributed denial of service attacks may degrade performance.


  • Distribution Level: Low
  • Target of Infection: Network shares.
Note: On May 14, 2015, modifications will be made to the threat write-ups to streamline the content. The Threat Assessment section will no longer be published as this section is no longer relevant to today's threat landscape. The Risk Level will continue to be the main threat risk assessment indicator.
Writeup By: Mario Ballano

Search Threats

Search by name
Example: W32.Beagle.AG@mm
STAR Antimalware Protection Technologies
Internet Security Threat Report