Backdoor.Win32.Delf.il
(Backdoor.Win32.Delf.il)

by ?

Original Filename unknown

Written in Delphi, compressed with UPX

more in this category


Backdoor.Win32.Delf.il:
size: 244.224 bytes

startup:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "VnCplUpdate"

does (try to) connect to ip 61.172.244.108 (located in China)

MegaSecurity