ThreatExpert's Statistics for Trojan-Downloader.Win32.Delf [Ikarus]:

Trojan-Downloader.Win32.Delf [Ikarus] is also known as:

Threat Alias	Number of Incidents
Mal/Generic-A [Sophos]	83
Generic.dx [McAfee]	73
Downloader [Symantec]	62
Mal/Basine-C [Sophos]	61
Win-Trojan/Xema.variant [AhnLab]	59
Trojan Horse [Symantec]	51
Trojan.Adclicker [Symantec]	50
Worm.Win32.AutoRun.aing [Kaspersky Lab]	48
Generic Downloader.x [McAfee]	37
W32/Autorun.worm!n [McAfee]	36
Dropper/Downloader.99449 [AhnLab]	30
Trojan.Adclicker!sd6 [PC Tools]	24
TrojanDownloader:Win32/Troxen!rts [Microsoft]	22
Trojan-Downloader.Delf!sd6 [PC Tools]	17
Backdoor.Win32.Delf.qzn [Kaspersky Lab]	16
Mal/Banspy-F [Sophos]	16
Trojan-Downloader.Win32.Delf.sgq [Kaspersky Lab]	16
Infostealer.Gampass [Symantec]	13
Worm.Win32.AutoRun [Ikarus]	12
Suspicious.MH690 [Symantec]	11
Backdoor.Win32.Delf.qvf [Kaspersky Lab]	10
Trojan-Downloader.Win32.Delf.wxh [Kaspersky Lab]	10
Generic Downloader.x!bo [McAfee]	9
Mal/DelpDldr-F [Sophos]	9
Trojan-Downloader.Win32.Delf.sxw [Kaspersky Lab]	9
W32.Whacker.A [Symantec]	9
Backdoor.Win32.Hupigon.gbuz [Kaspersky Lab]	8
Downloader.gen.a [McAfee]	8
Downloader.MisleadApp [Symantec]	8
Downloader.Trojan [Symantec]	8
Generic Downloader.x!a [McAfee]	8
Trojan.Delfinject.Gen.2 [PC Tools]	8
Trojan.Generic [PC Tools]	8
VirTool:Win32/DelfInject.gen!J [Microsoft]	8
W32/Generic.Delphi.b [McAfee]	8
Win-Trojan/Banker.597504.J [AhnLab]	8
Backdoor.Trojan [Symantec]	7
BackDoor-DRV.gen.c [McAfee]	7
Mal/Behav-130 [Sophos]	7
Mal/Behav-321 [Sophos]	7
Possible_Virus [Trend Micro]	7
Win-Trojan/QQPass.Gen [AhnLab]	7
Generic Downloader.x!blm [McAfee]	6
Mal/Behav-214, Mal/Dropper-H, Mal/Behav-152 [Sophos]	6
Trojan.Dropper [Symantec]	6
Trojan:Win32/Trufip!rts [Microsoft]	6
Trojan-GameThief.Win32.OnLineGames.thoc [Kaspersky Lab]	6
Win-Trojan/Cosne.606218 [AhnLab]	6
Win-Trojan/Xema.47104.F [AhnLab]	6
Mal/Packer [Sophos]	5
not-a-virus:PSWTool.Win32.MailPassView.as [Kaspersky Lab]	5
TrojanDownloader:Win32/VB.CR [Microsoft]	5
Trojan-Dropper.Win32.Agent.rym [Kaspersky Lab]	5
Backdoor.Win32.GGDoor.22 [Kaspersky Lab]	4
Generic Downloader.x!bi [McAfee]	4
Generic PWS.y [McAfee]	4
Generic.ff [McAfee]	4
Infostealer [Symantec]	4
Mal/Behav-009 [Sophos]	4
Mal/Behav-043 [Sophos]	4
Mal/DelpDldr-D [Sophos]	4
Mal/Emogen-I [Sophos]	4
Trackware.WebGuardian [Symantec]	4
Trojan-Downloader.Win32.Delf.tfy [Kaspersky Lab]	4
TrojanDownloader:Win32/Small.gen!B [Microsoft]	4
Trojan-Spy.Win32.Delf.eae [Kaspersky Lab]	4
Virus.Win32.Induc.a [Kaspersky Lab]	4
W32.Induc.A [Symantec]	4
W32/Induc-A [Sophos]	4
Win32/Induc [AhnLab]	4
Win-Trojan/Buzus.147014 [AhnLab]	4
Backdoor.GGDoor!sd5 [PC Tools]	3
Downloader.Bancos!gen [Symantec]	3
Downloader.Generic [PC Tools]	3
Downloader-ABU [McAfee]	3
Mal/Behav-136 [Sophos]	3
Mal/Delf-M [Sophos]	3
Mal/DelpBanc-A [Sophos]	3
Mal/DelpDldr-C [Sophos]	3
Mal/EncPk-CK [Sophos]	3
Mal/Inet-Fam [Sophos]	3
New Malware.x [McAfee]	3
PWS:Win32/OnLineGames.BX.dr [Microsoft]	3
Troj/FakeVir-HH [Sophos]	3
Trojan.PWS.QQPass [Symantec]	3
Trojan:Win32/Malagent [Microsoft]	3
Trojan-Downloader.Win32.Banload.ajii [Kaspersky Lab]	3
Trojan-Downloader.Win32.Delf.pdp [Kaspersky Lab]	3
Trojan-PWS.QQPass [PC Tools]	3
Virus.Win32.Delf.bc [Kaspersky Lab]	3
W32/Whacker.worm [McAfee]	3
Win32.HLLO.BlackDay.D [PC Tools]	3
Win-Trojan/OnlineGameHack.212232.B [AhnLab]	3
Worm:Win32/Delf.AK [Microsoft]	3
Backdoor.Tidserv [Symantec]	2
Backdoor.Win32.G_Door [Ikarus]	2
Backdoor.Win32.Hupigon.gehh [Kaspersky Lab]	2
Backdoor:Win32/GGDoor [Microsoft]	2
FakeAlert-WinwebSecurity.gen [McAfee]	2
Generic BackDoor [McAfee]	2

Trojan-Downloader.Win32.Delf [Ikarus] has the following possible countries of origin:

Origin		Number of Incidents
	China	106
	Brazil	58
	United Kingdom	49
	Russian Federation	16
	Republic of Korea	6
	Israel	5
	Turkey	2
	France	1
	Germany	1
	Iran	1
	Netherlands	1
	Poland	1
	Saudi Arabia	1
	Taiwan	1
	Ukraine	1

Trojan-Downloader.Win32.Delf [Ikarus] is known to be created as:

%AppData%\bandook.exe

%AppData%\iconcache.db.exe

%AppData%\klg1.dll

%AppData%\microsoft\windows\winlogon.exe

%AppData%\wuauct.exe

%CommonAppData%\431ae0b6.exe

%ProgramFiles%\childwebguardian\cwg_reg.exe

%ProgramFiles%\cosmicsoft.lx.ro\smartqrp\smartqrp.exe

%ProgramFiles%\flv to mp3 converter\flvtomp3converter.exe

%ProgramFiles%\gamegain\gamegain.exe

%ProgramFiles%\internet explorer\rasadhlp.dll

%ProgramFiles%\internet explorer\svchost.exe

%System%\1146164dll.dll

%System%\1337.dll

%System%\140578dll.dll

%System%\45401dll.dll

%System%\456765dll.dll

%System%\audiohq.exe

%System%\drivers\txplatformm.exe

%System%\hideqqserver.dll

%System%\hkey.dll

%System%\icwdial.exe

%System%\icwphbk.exe

%System%\iexplore.exe

%System%\interinfo.exe

%System%\javaccpl.exe

%System%\kurier9.scr

%System%\mmsvc32.exe

%System%\msxm1r.dll

%System%\mtxdm.exe

%System%\netvdm.exe

%System%\project2.dll

%System%\qq.dll

%System%\qtplugin.exe

%System%\spools.exe

%System%\sysservice.exe

%System%\syssq17.dll

%System%\systemlr.dll

%System%\taskmg.exe

%System%\windowsrequestupdate.exe

%System%\windowsupdat.exe

%System%\wingamma.exe

%System%\winupdate.exe

%Temp%\0cd0a401.exe

%Temp%\12.exe

%Temp%\5_odb.exe

%Temp%\501.exe

%Temp%\admin6_ver9-15.exe

%Temp%\cgibin.exe

%Temp%\cxad0.exe

%Temp%\ixp000.tmp\tutorial.exe

%Temp%\nxgtgwbsy.dll

%Temp%\setup.exe

%Temp%\setup706.exe

%Temp%\skkeokfpo.dll

%Temp%\skymmstp033.exe

%Temp%\svchost.exe

%Temp%\tutorial.exe

%Temp%\wzse0.tmp\jmail.dll

%Temp%\xl.exe

%UserProfile%\ntuser.exe

%Windir%\0.exe

%Windir%\apppatch\drvmain.exe

%Windir%\apppatch\msimain.exe

%Windir%\bootstat.exe

%Windir%\clock.exe

%Windir%\cmsetacl.exe

%Windir%\comsetup.exe

%Windir%\control.exe

%Windir%\csrss.exe

%Windir%\cursors\3dgarro.exe

%Windir%\cursors\3dgmove.exe

%Windir%\cursors\3dgnesw.exe

%Windir%\cursors\3dgno.exe

%Windir%\cursors\3dgns.exe

%Windir%\cursors\3dgnwse.exe

%Windir%\cursors\3dgwe.exe

%Windir%\cursors\3dsmove.exe

%Windir%\cursors\3dsns.exe

%Windir%\cursors\3dsnwse.exe

%Windir%\cursors\3dwarro.exe

%Windir%\cursors\3dwmove.exe

%Windir%\cursors\3dwnesw.exe

%Windir%\cursors\3dwno.exe

%Windir%\cursors\3dwns.exe

%Windir%\cursors\3dwnwse.exe

%Windir%\cursors\3dwwe.exe

%Windir%\cursors\appstar2.exe

%Windir%\cursors\appstar3.exe

%Windir%\cursors\appstart.exe

%Windir%\cursors\arrow_i.exe

%Windir%\cursors\arrow_il.exe

%Windir%\cursors\arrow_im.exe

%Windir%\cursors\arrow_l.exe

%Windir%\cursors\arrow_m.exe

%Windir%\cursors\arrow_r.exe

%Windir%\cursors\arrow_rl.exe

%Windir%\cursors\arrow_rm.exe

%Windir%\cursors\banana.exe

%Windir%\cursors\barber.exe

Notes:

%AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
%CommonAppData% is a variable that refers to the file system directory containing application data for all users. A typical path is C:\Documents and Settings\All Users\Application Data.
%ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
%System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
%Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
%UserProfile% is a variable that specifies the current user's profile folder. By default, this is C:\Documents and Settings\[UserName] (Windows NT/2000/XP).
%Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.