Mal/CoreFlood-A is a malicious executable that typically drops some of the following files:
<Temp>\<random filename>.dll
<System>\<random filename>.dil
<System>\<random filename>.ocx
<System>\<random filename>.dat (multiple dropped)
The .dll, .dil and .ocx files are also detected as Mal/CoreFlood-A, while the .dat files are clean data files.
Registry entries of the following form are created in order to run the malware on startup:
HKCR\CLSID\{<random GUID>}\InprocServer32
(default)
<System>\<path to malicious executable>