SecurityHome.eu VirTool:Win32/DelfInject.gen!CP

Home / malware PDF

VirTool:Win32/DelfInject.gen!CP

First posted on 01 May 2012.
Source: Microsoft
Aliases :
There are no other names known for VirTool:Win32/DelfInject.gen!CP.
Explanation :

VirTool:Win32/DelfInject.gen!CP is a generic detection for malicious files that are obfuscated using particular techniques to protect them from detection or analysis. A malicious file is generally encrypted and/or compressed and stored inside another program, which decodes the malicious file and loads it. The malicious program may be injected into a clean process or loaded in a new process of its own. Unlike a "dropper", the malicious executable is never written to disk as a separate file. VirTool:Win32/DelfInject.gen has been used on a variety of different malware, especially several different families of Instant Messaging (IM) spreading Internet Relay Chat (IRC) bots such as Worm:Win32/Scrimge, Worm:Win32/Slenfbot and Worm:Win32/Pushbot. Other malware families such as Win32/Rimecud, Win32/Zbot and Win32/Hamweq have also been observed using Delfinject.
Last update 01 May 2012

TOP

Malware :

Last 20

VirTool:Win32/DelfInject.gen!CP

Aliases :

Explanation :

Malware :

Family: