Aliases: Trojan-Spy.Win32.Delf.fu, Backdoor.Win32.Delf.acq
Variants: 2.0, 2.1
Size: 75kb
Author: Wojass
Created: DEC 2004
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\
HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_MCHINJDRV\
HKLM\SYSTEM\ControlSet001\Services\mchInjDrv\
HKLM\SYSTEM\ControlSet002\C\
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\
HKLM\SYSTEM\CurrentControlSet\Services\mchInjDrv\
HKCU\Software\Microsoft\Windows\CurrentVersion\Run/
Infection: rootgg.dll, systemxpsp2.dll
Variants: 2.0, 2.1
Size: 75kb
Author: Wojass
Created: DEC 2004
OS: Windows
Location: HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\
HKLM\SYSTEM\ControlSet001\Enum\Root\LEGACY_MCHINJDRV\
HKLM\SYSTEM\ControlSet001\Services\mchInjDrv\
HKLM\SYSTEM\ControlSet002\C\
HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_MCHINJDRV\
HKLM\SYSTEM\CurrentControlSet\Services\mchInjDrv\
HKCU\Software\Microsoft\Windows\CurrentVersion\Run/
Infection: rootgg.dll, systemxpsp2.dll