Threat Search: 

ThreatExpert's Statistics for VirTool:Win32/DelfInject.gen!N [Microsoft]:

VirTool:Win32/DelfInject.gen!N [Microsoft] is also known as:
Threat AliasNumber of Incidents
BKDR_AGENT.XQB [Trend Micro]78
Troj/LdPinch-RT [Sophos]75
MultiDropper-RY [McAfee]69
Backdoor.Win32.Bifrose.fms [Kaspersky Lab]55
Virus.Win32.Buzus [Ikarus]55
Backdoor.Bifrose.EZC [PC Tools]51
Backdoor.Trojan [Symantec]32
Win-Trojan/Bifrose.71168.B [AhnLab]27
Trojan Horse [Symantec]23
Backdoor.IRC.Bot [Symantec]22
Troj/PWS-AYJ [Sophos]19
Mal/Dorf-A [Sophos]17
VirTool.Win32.DelfInject [Ikarus]17
Trojan.Buzus.KG [PC Tools]15
Backdoor.Win32.Bifrose.aer [Kaspersky Lab]14
Generic.dx [McAfee]13
Infostealer [Symantec]9
Trojan.Win32.Agent.bfbb [Kaspersky Lab]9
W32/Rbot-GVY [Sophos]8
MultiDropper-JD [McAfee]7
Trojan-Dropper.Delf [Ikarus]7
Win32/IRCBot.worm.variant [AhnLab]7
Backdoor.Win32.Rbot.jcv [Kaspersky Lab]6
Constructor.Win32.Agent.gz [Kaspersky Lab]6
PWS-LDPinch [McAfee]6
Trojan.Crypt [Ikarus]6
W32.IRCBot [Symantec]6
Win-Trojan/Inject.137216.D [AhnLab]6
Suspicious.MH690 [Symantec]5
Trojan.Injector.AF [Ikarus]5
Virus.Win32.Zapchast.DA [Ikarus]5
IRC Trojan [Symantec]4
Mal/Emogen-I [Sophos]4
Win-Trojan/Bifrose.10240.C [AhnLab]4
Win-Trojan/Buzus.49152.G [AhnLab]4
Worm.RBot.AAUG [PC Tools]4
BackDoor-CEP.svr [McAfee]3
Packed.Win32.CPEX-based.fi [Kaspersky Lab]3
Trojan.Agent.BFBB [PC Tools]3
Trojan.Generic [PC Tools]3
Trojan-Dropper.Delf.Crypt.C [Ikarus]3
VirTool.Win32.Delfsnif [Ikarus]3
W32/Sdbot.worm [McAfee]3
Win-Trojan/Bifrose.61440.G [AhnLab]3
Backdoor.IRCBot.XGJ [PC Tools]2
Backdoor.Win32.IRCBot.are [Kaspersky Lab]2
Generic BackDoor [McAfee]2
Generic Dropper.np [McAfee]2
Generic PUP.x [McAfee]2
PWS:Win32/Ldpinch.CG [Microsoft]2
Trojan.Buzus!ct [PC Tools]2
Trojan.PWS.LdPinch.IWE [PC Tools]2
Trojan.Win32.Agent [Ikarus]2
Trojan.Win32.Buzus.bbw [Kaspersky Lab]2
Trojan-PSW.Win32.LdPinch.ulx [Kaspersky Lab]2
Virus.Win32.Delf.BQR [Ikarus]2
W32.Spybot.Worm [Symantec]2
Win32.Worm.Slenfbot.AR [Ikarus]2
Win-Trojan/LdPinch.75776.AI [AhnLab]2
Backdoor.Agobot!ct [PC Tools]1
Backdoor.Bifrose [Symantec]1
Backdoor.Bifrose!ct [PC Tools]1
Backdoor.Graybird [Symantec]1
Backdoor.IRCBot!sd6 [PC Tools]1
Backdoor.Rbot [Ikarus]1
Backdoor.Win32.Agent.ahz [Kaspersky Lab]1
Backdoor.Win32.Agobot.aoi [Kaspersky Lab]1
Backdoor.Win32.Bifrose.roy [Kaspersky Lab]1
Backdoor.Win32.IRCBot.aaq [Kaspersky Lab]1
Backdoor.Win32.IRCBot.fgj [Kaspersky Lab]1
BackDoor-CEP [McAfee]1
BackDoor-EE.svr [McAfee]1
BehavesLikeWin32.ProcessHijack [Ikarus]1
BKDR_IRCBOT.ACK [Trend Micro]1
BKDR_IRCBOT.BSO [Trend Micro]1
Dropper/Typic.2058240 [AhnLab]1
Dropper/Typic.561152.B [AhnLab]1
Generic Dropper!bhs [McAfee]1
Generic Dropper!sc [McAfee]1
Mal/Behav-027, Mal/Behav-058, Mal/Behav-179, Mal/Basine-C, Mal/Behav-010 [Sophos]1
Mal/DelpInj-A, Mal/Behav-328, Mal/Emogen-I, Mal/Dropper-W, Mal/Dropper-G [Sophos]1
Mal/Dropper-AJ [Sophos]1
Mal/Dropper-G [Sophos]1
Mal/Dropper-W, Mal/Dropper-G, Mal/Dropper-AB [Sophos]1
Mal/EncPk-CO [Sophos]1
MemScanTrojan.Downloader.JKFL [Ikarus]1
Packed.Generic.110 [Symantec]1
Packed.Win32.Black.a [Kaspersky Lab]1
Packed.Win32.PolyCrypt.m [Kaspersky Lab]1
Suspicious.Bifrose [Symantec]1
TROJ_MALQWF.A [Trend Micro]1
TROJ_MICROJOIN.W [Trend Micro]1
Trojan.Agent!sd6 [PC Tools]1
Trojan.Buzus.acsb [PC Tools]1
Trojan.Injector [Ikarus]1
Trojan.Midgare.EYZ [PC Tools]1
Trojan.Win32.Agent.bacx [Kaspersky Lab]1
Trojan.Win32.Buzus [Ikarus]1
Trojan.Win32.Buzus.achr [Kaspersky Lab]1
Trojan.Win32.Buzus.agbl [Kaspersky Lab]1

VirTool:Win32/DelfInject.gen!N [Microsoft] has the following possible countries of origin:
OriginNumber of Incidents
Russian Federation3
Argentina1
Canada1
Egypt1
Indonesia1
Netherlands1
Spain1
Sweden1
Turkey1
United Kingdom1

VirTool:Win32/DelfInject.gen!N [Microsoft] is known to be created as:
%AppData%\bifrost\server.exe
%AppData%\win32.exe
%ProgramFiles%\avira\avira.exe
%ProgramFiles%\bifrost\server.exe
%ProgramFiles%\cam\cam.exe
%ProgramFiles%\msnmms\msnmsm.exe
%ProgramFiles%\system\server.exe
%ProgramFiles%\system32\server.exe
%ProgramFiles%\update\msn.exe
%ProgramFiles%\update\server.exe
%ProgramFiles%\xerox\xerox.exe
%System%\1.exe
%System%\bifrost\new.exe
%System%\bifrost\server.exe
%System%\d3dx9_20.dll
%System%\divxupdate.exe
%System%\dllcache\winxptcp.exe
%System%\dxdiag.dll
%System%\eh_ab\cpuehb.exe
%System%\explore.exe
%System%\firefox.exe
%System%\joomal\dump.exe
%System%\kaspersky.exe
%System%\messenger\msn.exe
%System%\msiexec16.exe
%System%\msnmsgd.exe
%System%\ok.exe
%System%\server.exe
%System%\stucked.exe
%System%\system conf\loadwindows.exe
%System%\system\random.exe
%System%\windsys2.exe
%System%\winsnc\winsnc.exe
%Temp%\darkstorm.exe
%Temp%\decrypted.exe
%Temp%\dhdh.exe
%Temp%\ixp000.tmp\server.exe
%Temp%\kiiidss.exe
%Temp%\photopic3.exe
%Temp%\server.exe
%Temp%\tempalbert\server.exe
%Windir%\1222\explorer.exe
%Windir%\3.exe
%Windir%\bifrost\server.exe
%Windir%\fxstaller.exe
%Windir%\installer.exe
%Windir%\lsass.exe
%Windir%\mstwain32.exe
%Windir%\patch.exe
%Windir%\system\msddll.exe
%Windir%\system\wuauclt.exe
%Windir%\system32:explore.exe
%Windir%\win32.exe
%Windir%\winmsn.exe
c:\recycler\nvscvse.exe
c:\server.exe
c:\windowssvchosts.exe
Notes:
  • %AppData% is a variable that refers to the file system directory that serves as a common repository for application-specific data. A typical path is C:\Documents and Settings\[UserName]\Application Data.
  • %ProgramFiles% is a variable that refers to the Program Files folder. A typical path is C:\Program Files.
  • %System% is a variable that refers to the System folder. By default, this is C:\Windows\System (Windows 95/98/Me), C:\Winnt\System32 (Windows NT/2000), or C:\Windows\System32 (Windows XP).
  • %Temp% is a variable that refers to the temporary folder in the short path form. By default, this is C:\Documents and Settings\[UserName]\Local Settings\Temp\ (Windows NT/2000/XP).
  • %Windir% is a variable that refers to the Windows installation folder. By default, this is C:\Windows or C:\Winnt.