Win32/Delf.SXD [Threat Name] go to Threat
Win32/Delf.SXD [Threat Variant Name]
|Detection created||Jul 10, 2015|
|Signature database version||11920|
Win32/Delf.SXD is a trojan which tries to download other malware from the Internet.
The trojan does not create any copies of itself.
The trojan is probably a part of other malware.
In order to be executed on system start, the trojan sets the following Registry entry:
- "svchost.exe" = "%malwarefilepath%"
The trojan executes the following files:
The trojan contains a URL address.
It tries to connect to the remote machine on port:
The TCP protocol is used in the communication.
It tries to download a file from the address.
The file is stored in the following location: