Backdoor.Win32.Delf.bh

Backdoor.Win32.Delf.bh
(Backdoor.Win32.Delf.bh)
(Trojan-Spy.Win32.Delf.ffi for HookKeyboard.dll)
(Trojan.Win32.Delf.hpj for HookMouse.dll)

by ?

Original name unknown

Written in Delphi

more in this category


Dropped files:
c:\WINDOWS\system\Hook.dll          Size: 27,056 bytes 
c:\WINDOWS\system\HookKeyboard.dll  Size: 8,704 bytes 
c:\WINDOWS\system\HookMouse.dll     Size: 9,728 bytes 
c:\WINDOWS\system\System32.exe      Size: 486,912 bytes 

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "System32"
data: C:\WINDOWS\System\System32.exe

MegaSecurity