PDA Pocket PC trojan out in the wild

The trojan, Backdoor.WinCE.Brador.a opens infected machines for remote administration and can infect handheld PDAs running Pocket PCs.

After the backdoor is launched, the trojan creates svchost.exe in Windows autorun, identifies the machine's IP address and open port 44299.

The Brador virus allows the author control over the infected PDA, but like other backdoor trojans can't spread by itself.

Said Eugene Kaspersky: "We were certain that a viable malicious program for PDAs would appear soon after the first proof of concept viruses emerged for mobile phones and Windows mobile".

He added that WinCE.Bardor.a is a full scale malicious program and has a complete set of destructive functions.

Brador, said Kaspersky, was probably written by a Russian virus coder, attached to an email with a Russian sender, and then offered for sale.

The firm said that PDA users now face a real danger. "We will probably see a serious outbreak of viruses for handhelds sometime soon". µ