Hacked Info

A malware, christened W32/Induct-A, is the latest find in the computer-infecting virus bandwagon. This virus specifically attacks applications written with programming language Delphi. Delphi is the object-oriented visual programming that originated from Pascal. W32/Induct-A can identify raw code in Delphi. Since Delphi is most sought-after for database programmes, this malware copies itself into a new code during any application programming and creeps in the executable file in an unseen fashion.

How W32/Induct-A spreads is that if an application programme is already infected with this virus, any software that gets compiled on the affected machine also falls prey. This virus creates and spreads its own executable file and also the source code. This virus also drops its code into other programmes that have been compiled on the infected computer system. However, the sunny side is that this malware does not erase any programmes.

But, SonicWALL and SophosLabs researchers say that this malware, W32/Induct-A, will be easily barred by anti-virus software. Already over 3,000 exclusive samples of infected programmes have emerged. This virus generally affects computers that have been installed with Delphi environment versions 4.0, 5.0, 6.0 or 7.0. Then, if W32/Induct-A detects software, it compiles the Delphi source file Sysconst.pas, and produces a modified version of Sysconst.dcu, which is the compiled file.

As of now, W32/Induct-A is not considered malicious or threatening as there is no payload. However, it has managed to infect many versions of the widely used IM client QIP. Among the hundreds of software already infected are Any TV Free 2.41 and Tidy Favorites 4.1. It is estimated that 30% of Delphi users worldwide use Any TV Free 2.41 and Tidy Favorites 4.1, so the extent of infection is substantial.

A cue for Delphi users is, update your anti-virus software and alert the developers if you find a W32/Induct-A infection in any programme.