Should I remove “Trojan.Generic.15251880”?

The Trojan.Generic.15251880 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Generic.15251880 virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Trojan.Generic.15251880?


File Info:
name: 4385DCDA15E7440D37B7.mlw
path: /opt/CAPEv2/storage/binaries/9ef5f98c09605a309f2cd3e34ca96683dd0de62838e79d3d7ff17ec329c77486
crc32: 09954AAC
md5: 4385dcda15e7440d37b7893ddd6432be
sha1: 1936da81641f3f078e90def30637e8b14fe09c2c
sha256: 9ef5f98c09605a309f2cd3e34ca96683dd0de62838e79d3d7ff17ec329c77486
sha512: 49bbe7bd67e1e1e804849cfbc5e7dea1c49c98574619c31948ce09ab8e12a3a7907320b1aa8c3022ad95d984b95ef2bf0f424261aa346ce5dbaa622e57d45584
ssdeep: 3072:BLk395hYXJmZE3tdMVVDBghveshU8WC84jfHVhywguE3nngH/joVyrAMryWfzI:BQqz3tdMzp+bWn4awgu6ngf0sE2yWE
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F004021A72E5D5FBD6460A3015F7EB37D3FFA6A8021217131B100FAEADA0147DE2B691
sha3_384: c8e2ba2bc85f3f66978336927d642c2e7e5d475b512b83ad1f5c4e7b26c01e0b3941ff99c1f4a8c30c92eacdcfd55f65
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2009-12-05 22:50:41

Version Info:
Comments: 百度影音
FileDescription: BaiduPlayer Setup
FileVersion: 1.14.0.101
ProductName: BaiDu Player
Translation: 0x0804 0x03a8

Trojan.Generic.15251880 also known as:

Bkav	W32.AIDetectMalware
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Trojan.Generic.15251880
FireEye	Trojan.Generic.15251880
ALYac	Trojan.Generic.15251880
K7AntiVirus	Trojan-Downloader ( 0055e3ed1 )
K7GW	Trojan-Downloader ( 0055e3ed1 )
ESET-NOD32	NSIS/TrojanDownloader.Chindo.AB
APEX	Malicious
Kaspersky	HEUR:Trojan-Downloader.Win32.Chindo.gen
BitDefender	Trojan.Generic.15251880
NANO-Antivirus	Riskware.Nsis.Chindo.dzviae
Avast	NSIS:DropperX-gen [Drp]
Tencent	Malware.Win32.Gencirc.10bf0e40
Sophos	Mal/Generic-S
Baidu	NSIS.Trojan-Downloader.Chindo.b
VIPRE	Trojan.Generic.15251880
Emsisoft	Trojan.Generic.15251880 (B)
GData	Trojan.Generic.15251880
Antiy-AVL	Trojan[Downloader]/NSIS.Chindo.ab
Arcabit	Trojan.Generic.DE8B9A8
ZoneAlarm	HEUR:Trojan-Downloader.Win32.Chindo.gen
Microsoft	SoftwareBundler:Win32/Chindo
VBA32	TrojanDownloader.Chindo
MAX	malware (ai score=89)
Panda	Trj/CI.A
Ikarus	Trojan-Downloader.Win32.Adload
AVG	NSIS:DropperX-gen [Drp]
DeepInstinct	MALICIOUS

How to remove Trojan.Generic.15251880?

Trojan.Generic.15251880 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X