Jump to content

VirTool.DelfInject - What is it?


Recommended Posts

Hi! 

 

So I was scouring the internet the last night and eventually downloaded an exe that ended up containing the malware in the title of my post. Malwarebytes was able to identify the malicious file (IPK-DEFINITE.EXE)  before it could fully execute and change any registry entries (checked myself, scanned with mwb rkill) or inject itself into any of my processes. 

After rebooting the file didn't reappear in my temp folder, and all of my processes are seemingly operating normally. I'm doing a full scan with mwb and windows defender with my pc disconnected from the network as I type this to make sure nothing remains of it. 

 

What I'd like to know is what this virus actually does, and if I should be vigilant about it somehow returning. From the name mwb gave me (and this is my novice interpretation, hence the thread), it seems to be some sort of "virus tool" that injects something malicious (DelfInject). I couldn't find any information on this specific virus in Malwarebytes' glossary, unfortunately. 

 

Thanks, and have a happy new years. 

 

 

 

Just a quick edit, but I did notice that in my task manager I have two "User mode font driver host" processes running, and that one is using up 2% of my cpu. The fontdrvhost.exe is also 732kb. Is there anything to worry about out there? 

Edited by TotallyPCLiterate
Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.