What is “Adware.Bulz.5473”?

The Adware.Bulz.5473 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Adware.Bulz.5473 virus can do?

Executable code extraction
Creates RWX memory
Reads data out of its own binary image
HTTP traffic contains suspicious features which may be indicative of malware related traffic
Performs some HTTP requests

How to determine Adware.Bulz.5473?


File Info:
crc32: B729E2F5
md5: 3fb8a692548d712bc5c0ee604f7697f2
name: 3FB8A692548D712BC5C0EE604F7697F2.mlw
sha1: 328d223b7b47d858e9dc8c822538e7eb83ad1b9d
sha256: 695e731504cbf0d76a7e22e8c984429a048ecd4a321883ac87e61d5199df522f
sha512: 867c13c3eed40a3887cc2e0963c5929d4513aa3a93169215e03c2da1565e09d08d881e5ee69b58bfbcb0028aa2db20cb47ab8288d21e9e6ba74a249503ae70b3
ssdeep: 1536:Y3s5LsrMKi/IXkzgWUT3pZVjLn89f73oL/K4YnNg2WuWvkJ:Y3s5LsQKiUkTUT5DCfjoLCRNUuWY
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:
Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2021
Assembly Version: 1.17845.21.12
InternalName: xYW2RW5ePv.exe
FileVersion: 15.48.15.5
CompanyName: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
LegalTrademarks: 
Comments: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
ProductName: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
ProductVersion: 15.48.15.5
FileDescription: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
OriginalFilename: xYW2RW5ePv.exe

Adware.Bulz.5473 also known as:

Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
CAT-QuickHeal	PUA.GenericFC.S20328886
ALYac	Gen:Variant.Adware.Bulz.5473
Cylance	Unsafe
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Adware.CsdiMonetize.BL
APEX	Malicious
Avast	Win32:AdwareX-gen [Adw]
Kaspersky	not-a-virus:HEUR:AdWare.MSIL.CSDI.gen
BitDefender	Gen:Variant.Adware.Bulz.5473
MicroWorld-eScan	Gen:Variant.Adware.Bulz.5473
Ad-Aware	Gen:Variant.Adware.Bulz.5473
BitDefenderTheta	Gen:NN.ZemsilF.34722.fm0@aeaTqdh
McAfee-GW-Edition	PUP-XOH-FK
FireEye	Gen:Variant.Adware.Bulz.5473
Emsisoft	Gen:Variant.Adware.Bulz.5473 (B)
SentinelOne	Static AI – Malicious PE
Microsoft	Program:Win32/Wacapew.C!ml
Arcabit	Trojan.Adware.Bulz.D1561
GData	Gen:Variant.Adware.Bulz.5473
AhnLab-V3	PUP/Win.Generic.C4387079
McAfee	PUP-XOH-FK
MAX	malware (ai score=63)
Malwarebytes	Malware.AI.936657053
Panda	Trj/GdSda.A
MaxSecure	Trojan.Malware.300983.susgen
AVG	Win32:AdwareX-gen [Adw]

How to remove Adware.Bulz.5473?

Adware.Bulz.5473 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X