W32/Delbot-AP is an IRC worm with backdoor functionality that allows a remote intruder to gain access and control over the computer.

W32/Delbot-AP includes functionality to download, install and run new software.

W32/Delbot-AP spreads to other network computers by scanning network shares for weak passwords and by exploiting common buffer overflow vulnerabilities, including Symantec (SYM06-010) and MS06-040. It may also attempt to spread by utilizing weaknesses associated with SQL servers.


More information can be found at this Sophos page.