| Name: | Delf |
| Aliases: | Troj_Delf.D, Backdoor.Delf, Backdoor.ADB, |
| Ports: | 102, 285, 1049, 34312, 34313 |
| Files: | Delf.ao.zip - Delf.u.zip - Scanregw.exe - Kernel32.exe - (version B)Carved.jpq - Syst.exe - Delf.k.ini - 4.html - Scsi.sys - Scsi_dd.sys - Scsi2.sys - Scsi3.sys - Taskmon.exe - - 165,888 bytes (version C) - 231,424 bytes - 252,928 bytes (version F) - 484,352 bytes (version A) - 522,754 bytes - 529,408 bytes - 569, 344 bytes (version D) |
| Created: | |
| Requires: | |
| Actions: | Anti-protection trojan / Remote Access / Keylogger / Steals passwords / Remote peeker / Destructive trojan |
| Registers: | HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run |
| HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce\ | |
| HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServices\ | |
| HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunServicesOnce\ | |
| HKEY_CLASSES_ROOT\txtfile\shell\open\command | |
| Notes: | Works on Windows NT, 2000 and XP. |
| Country: | writen in Poland |
| Program: | Written in Delphi. |