The trojan, as far as anyone knows, only works when compiling from source. The binary is unaffected. All it does is contact a port on a computer which according to the guy on /. who claimed he owned it, is now formatted and reinstalled.
If you want to check your OpenSSH source, here is the MD5 sum of the untrojaned version:
The trojaned version has the MD5 sum: