Malware type: Trojan

Aliases: Trojan-Downloader.Win32.Delf.hsd (Kaspersky), TR/Crypt.CFI.Gen (Avira), Troj/Dloadr-BLO (Sophos),

In the wild: Yes

Destructive: No

Language: English

Platform: Windows 98, ME, NT, 2000, XP, Server 2003

Encrypted: No

Description: 

This Trojan may be downloaded from remote sites by HTML_EXPLOIT.BR.

It accesses certain URLs to download a file detected as TROJ_DELF.BQ . It then registers the said file as a system service to ensure its automatic execution at every system startup.

As a result, malicious routines of the downloaded files are exhibited on the affected system. It saves the downloaded files using certain file names.

For additional information about this threat, see:
Solution
Technical Details

Description created: May. 23, 2008 12:54:37 AM GMT -0800

Search a new malware

Tell us how we did. Take our quick survey.