by ?
Original name unknown
Written in Delphi, compressed with UPX
Made in Brazil
dropped files: c:\Documents and Settings\%user%\Local Settings\Temp\hdll32.dll (Backdoor.Win32.Delf.nv) size: 167,773 bytes c:\WINDOWS\system32\HDLL.DLL (Backdoor.Win32.Delf.nv) size: 167,773 bytes c:\WINDOWS\system32\SpoolPrinter32.exe size: 399,482 bytes c:\WINDOWS\system32\SpoolPrinter32.INI size: 10 bytes startup; HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run "SpoolPrinter32.exe" data: C:\WINDOWS\System32\SpoolPrinter32.exe tested on Windows XP April 14, 2005MegaSecurity