Win32/Delf.AM [Threat Name] go to Threat

Win32/Delf.AM [Threat Variant Name]

Category trojan,virus
Size 168448 B
Detection created Dec 26, 2003
Detection database version 10470
Aliases Trojan.Win32.Delf.am (Kaspersky)
  Trojan.Creeper (Dr.Web)
Short description

Win32/Delf.AM is a trojan that steals sensitive information. The trojan attempts to send gathered information to a remote machine. The file is run-time compressed using UPX .

Installation

The trojan does not create any copies of itself.


In order to be executed on every system start, the trojan sets the following Registry entry:

  • [HKEY_LOCAL_MACHINE\­Software\­Microsoft\­Windows\­CurrentVersion\­Run]
    • "Microsoft Windows" = "%malwarefilepath%"
Information stealing

Win32/Delf.AM is a trojan that steals sensitive information.


The trojan is able to log keystrokes.


The collected information is stored in the following file:

  • %currentfolder%\­Creeper.txt
Other information

The trojan attempts to send gathered information to a remote machine.


The trojan sends the information via e-mail.

Please enable Javascript to ensure correct displaying of this content and refresh this page.