Adware

Adware.DealPly.GR malicious file

Malware Removal

The Adware.DealPly.GR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Adware.DealPly.GR virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

Related domains:

wpad.local-net

How to determine Adware.DealPly.GR?



File Info:

name: ECDD3F85EF16D9E2458C.mlw
path: /opt/CAPEv2/storage/binaries/2364b9c3aaf250aedffc710314f6e4769cf089aef41967fb21d2519154a044a5
crc32: EA08A334
md5: ecdd3f85ef16d9e2458cc8be28a4d940
sha1: a2e180a1b0a22bc2739ce59869bc4444c9489e7c
sha256: 2364b9c3aaf250aedffc710314f6e4769cf089aef41967fb21d2519154a044a5
sha512: c990fa3c53f093a13e53c77b7ce6573a356164a0143c428b32cd467a0fd4fdd5b81e7493966f5af092b58557e4c45a9b423087fe0feaf0900f97a3806643d76c
ssdeep: 24576:Q4MC7hyLcavIwWPV6vxlBKW2Z9bKfSusnpBUS+UeKEh4KAxeSx44nbm4kAz6:XhI7xlBtjSpeS+UdsAJ2Ybm4vz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EDB55C27B788753FC46B0A3A4567D654983FABB56D06AC4F47F44C4CCF291902E3AA0B
sha3_384: a9bbbdf9ae35e9874ad6a9ae254b7f81dfd8d6500a83b3ebf78039e984ce3069b652f50c46b06e1b96604746c68de641
ep_bytes: 558bec83c4f0b8504f5f00e8880be1ff
timestamp: 2015-03-09 22:13:21


Version Info:

CompanyName: Damera Ltd.
FileDescription: Honedec Caka
FileVersion: 2.3.13.20
InternalName: rasadadinof
LegalCopyright: Damera Ltd. 2009-2016
LegalTrademarks: 2009-2017
OriginalFilename: rasadadinof.exe
ProductName: Nosome Gecasara
ProductVersion: 3.4.47.79

Adware.DealPly.GR also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanAdware.DealPly.GR
FireEyeGeneric.mg.ecdd3f85ef16d9e2
McAfeePUP-XFI-RF
CylanceUnsafe
ZillyaAdware.DealPly.Win32.292204
SangforTrojan.Win32.Save.a
K7AntiVirusAdware ( 005497bb1 )
AlibabaAdWare:Win32/DealPly.539afb2c
K7GWAdware ( 005497bb1 )
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderThetaGen:NN.ZelphiF.34294.nU0@aSAdxcai
CyrenW32/DealPly.AI.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/DealPly.RC potentially unwanted
TrendMicro-HouseCallTROJ_GEN.R002C0PKL21
Paloaltogeneric.ml
Kasperskynot-a-virus:AdWare.Win32.DealPly.awoay
BitDefenderAdware.DealPly.GR
NANO-AntivirusRiskware.Win32.DealPly.exhezi
AvastWin32:DealPly-AJ [Adw]
TencentMalware.Win32.Gencirc.10c898a9
Ad-AwareAdware.DealPly.GR
EmsisoftAdware.DealPly.GR (B)
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0PKL21
McAfee-GW-EditionBehavesLike.Win32.Generic.vh
SophosDealPly Updater (PUA)
IkarusPUA.DealPly
GDataAdware.DealPly.GR
JiangminAdWare.DealPly.dtao
AviraHEUR/AGEN.1104226
Antiy-AVLTrojan/Generic.ASMalwS.2428381
MicrosoftTrojan:Win32/Wacatac.A!ml
CynetMalicious (score: 100)
Acronissuspicious
VBA32Adware.DealPly
ALYacAdware.DealPly.GR
MAXmalware (ai score=64)
MalwarebytesAdware.WinYahoo
APEXMalicious
RisingAdware.DealPly!1.AA42 (CLASSIC)
YandexPUA.DealPly!dD+GiITaxDs
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/AGEN.1033829!tr
AVGWin32:DealPly-AJ [Adw]
Cybereasonmalicious.5ef16d
PandaTrj/Genetic.gen

How to remove Adware.DealPly.GR?

Adware.DealPly.GR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment