Examples of HPsus/DelfInj-A include:
Example 1
File Information
- Size
- 362K
- SHA-1
- 000497b2bab604bca7a082ea3d4dcdb32adc175e
- MD5
- 3f725c0b56893105716d22b7bd516876
- CRC-32
- 235574f2
- File type
- application/x-ms-dos-executable
- First seen
- 2012-01-19
Runtime Analysis
Copies Itself To
- C:\Documents and Settings\All Users\bKM47HaNUT\wrp5t6ofm2fjoHo.exe
Registry Keys Created
- HKCU\Software\88dba0c4e2af76447df43d1e31331a3d
- 434990c8a25d2be94863561ae98bd682
- GI□`8□□x□□□□Y□□z□p□□0□□@F□P□□□□□p□□@Q□□□□□□□□y□□y□p[□@□□p□□□3□P□□□L□□□□`□□`□□□□□0□□□□□□□□@n□`□□@r□@□□`□□□N□@S□□□□□M□`□□ □□`□□□□□p□□□□□□□□@□□0G□P□□□@□□□□□8□□□□□3□□□□0!□p□□`□□□v□ j□□□□□□□@□□`□□□□□@P□0.□□□□□□□`□□□□□□E□□"□□□□□□□0□□□□□□+□ □□0□□p%□□□□0□□□□□□□□`w□□{□0□□`□□□□□□□□□□□□□□□□□ □0□□□□□□□□P\□@k□0□□@d□□□□□□□P□□07□□□□@□□□8□□n□ □□0□□0□□□P□ □□□□□ □□0□□□□□P□□□□□`P□□V□@□□□□□□]□□}□0□□0r□@□□□~□□>□0@□□□□□□□□w□□□□p □□□□ □□□Y□□~□□^□P□□□□□□□□□□□□□□□□□`g□□h□PG□□□□ 7□□□□□M□@□□□
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run
- vSfoE7nZovbMUX
- C:\Documents and Settings\All Users\bKM47HaNUT\wrp5t6ofm2fjoHo.exe
Example 2
File Information
- Size
- 351K
- SHA-1
- 000fb7682f27a3aa0b4e4585c7dde9937dea9df4
- MD5
- 2a11815fb9d56db043c2018843048d45
- CRC-32
- 8b848055
- File type
- application/x-ms-dos-executable
- First seen
- 2012-02-06
Runtime Analysis
Copies Itself To
- C:\Documents and Settings\All Users\8IR7cUqoEzS1\WjFrS0QP.exe
Registry Keys Created
- HKCU\Software\88dba0c4e2af76447df43d1e31331a3d
- 434990c8a25d2be94863561ae98bd682
- GI□`8□@□□p_□□Y□`□□0□□□□□0□□□|□□'□□□□P□□□{□□Z□□□□`□□□U□P□□□,□□i□□□□ps□□□□□□□@□□□T□□□□□□□□□□0□□`{□`□□□1□`a□p□□□□□P6□@r□□□□□s□@□□□U□□□□□□□□□□0□□0□□p□□p□□□□□`□□□_□P□□P□□□;□□%□@□□□□□□□□□□□□□□p□□`(□□h□□□□ D□@k□□□□P□□□g□□□□□□□`]□ W□□□□□□□□□□`□□ ?□P□□□□□p'□p□□□O□0□□□F□□□□□□□ □□ $□□□□□□□□□□@□□`□□□□□□□□ □□@□□□□□0□@A□□□□□%□□h□□□□□!□□□□□Q□`□□ +□0L□□□□pB□□□□□Y□ W□□q□□□□□b□p□□□□□□`□0□□□□□`.□pM□@□□□□□ 5□pO□□h□ □□`□□□□□□5□0□□@□□ □□□□□□□□`□□□□□P□□□□□p*□`,□□o□□□□
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run
- WmQ6ziX3f
- C:\Documents and Settings\All Users\8IR7cUqoEzS1\WjFrS0QP.exe
Example 3
File Information
- Size
- 367K
- SHA-1
- 0080700c9dce5700f98a0f0e8af7ae0b520f7f8c
- MD5
- f1cd5ad8901c3315f94e238dfedf16d3
- CRC-32
- 08e4c3a3
- File type
- application/x-ms-dos-executable
- First seen
- 2012-01-27
Runtime Analysis
Copies Itself To
- C:\Documents and Settings\All Users\iSjX6IfldZ\kJLYSqHPMC.exe
Registry Keys Created
- HKCU\Software\Microsoft\Windows\CurrentVersion\Run
- pBQsUyLD
- C:\Documents and Settings\All Users\iSjX6IfldZ\kJLYSqHPMC.exe
- HKCU\Software\88dba0c4e2af76447df43d1e31331a3d
- 434990c8a25d2be94863561ae98bd682
- GI□`8□□□□□□□□>□`□□`□□`□□ □□0R□□□□□F□□□□`□□□□□`□□□T□p□□□□□P□□□□□□□□□□□P□□0□□□□□0□□□□□□□□P□□□□□□k□0G□□□□□□□0u□□□□□ □□□□0.□pV□□v□0□□□□□□□□`□□□□□P□□ 7□□Q□□□□ □□□□□□□□□.□`□□ □□□□□0□□□□□□0□□Q□□□□@□□P□□□M□□□□ u□□`□□□□□□□□□ G□□□□□o□□□□□b□`□□□□□Pj□□p□□W□□□□p□□□□□□A□□}□`:□□□□□□□0□□□□□□□□p□□□□□`□□P$□□'□□M□0□□□□□□&□□□□@j□@□□□□□0*□□4□□v□□□□□□□@;□`□□□□□□y□Pb□□□□□Q□□m□□□□P'□□□□ □□□□□p□□pQ□□(□□]□□w□□A□□□□0□□□□□□□□□m□`□□0□□□@□`□□`□□□B□pS□□□□`□□□□□□□□□□□ □□□□□□□□