Adware

What is “Adware.Bulz.5473”?

Malware Removal

The Adware.Bulz.5473 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Adware.Bulz.5473 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • HTTP traffic contains suspicious features which may be indicative of malware related traffic
  • Performs some HTTP requests

How to determine Adware.Bulz.5473?


File Info:

crc32: B729E2F5
md5: 3fb8a692548d712bc5c0ee604f7697f2
name: 3FB8A692548D712BC5C0EE604F7697F2.mlw
sha1: 328d223b7b47d858e9dc8c822538e7eb83ad1b9d
sha256: 695e731504cbf0d76a7e22e8c984429a048ecd4a321883ac87e61d5199df522f
sha512: 867c13c3eed40a3887cc2e0963c5929d4513aa3a93169215e03c2da1565e09d08d881e5ee69b58bfbcb0028aa2db20cb47ab8288d21e9e6ba74a249503ae70b3
ssdeep: 1536:Y3s5LsrMKi/IXkzgWUT3pZVjLn89f73oL/K4YnNg2WuWvkJ:Y3s5LsQKiUkTUT5DCfjoLCRNUuWY
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 2021
Assembly Version: 1.17845.21.12
InternalName: xYW2RW5ePv.exe
FileVersion: 15.48.15.5
CompanyName: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
LegalTrademarks:
Comments: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
ProductName: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
ProductVersion: 15.48.15.5
FileDescription: Soft_CPm__bffFM7yp8tDnDy8HAAc5__
OriginalFilename: xYW2RW5ePv.exe

Adware.Bulz.5473 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CAT-QuickHealPUA.GenericFC.S20328886
ALYacGen:Variant.Adware.Bulz.5473
CylanceUnsafe
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Adware.CsdiMonetize.BL
APEXMalicious
AvastWin32:AdwareX-gen [Adw]
Kasperskynot-a-virus:HEUR:AdWare.MSIL.CSDI.gen
BitDefenderGen:Variant.Adware.Bulz.5473
MicroWorld-eScanGen:Variant.Adware.Bulz.5473
Ad-AwareGen:Variant.Adware.Bulz.5473
BitDefenderThetaGen:NN.ZemsilF.34722.fm0@aeaTqdh
McAfee-GW-EditionPUP-XOH-FK
FireEyeGen:Variant.Adware.Bulz.5473
EmsisoftGen:Variant.Adware.Bulz.5473 (B)
SentinelOneStatic AI – Malicious PE
MicrosoftProgram:Win32/Wacapew.C!ml
ArcabitTrojan.Adware.Bulz.D1561
GDataGen:Variant.Adware.Bulz.5473
AhnLab-V3PUP/Win.Generic.C4387079
McAfeePUP-XOH-FK
MAXmalware (ai score=63)
MalwarebytesMalware.AI.936657053
PandaTrj/GdSda.A
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:AdwareX-gen [Adw]

How to remove Adware.Bulz.5473?

Adware.Bulz.5473 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment