Categories: Adware

Adware.Sciagnij (file analysis)

The Adware.Sciagnij is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Adware.Sciagnij virus can do?

Attempts to connect to a dead IP:Port (1 unique times)
HTTP traffic contains suspicious features which may be indicative of malware related traffic
Performs some HTTP requests
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Attempts to modify proxy settings

Related domains:

z.whorecord.xyz

a.tomx.xyz

serwisy.gazeta.pl

How to determine Adware.Sciagnij?


File Info:
crc32: 9CD3E8D6md5: 2fc0851067fe74b772bc2dc460983a7cname: 2FC0851067FE74B772BC2DC460983A7C.mlwsha1: 7629069bf66c33e3bc8b45b80f65586f908c9108sha256: dbf8601cda8244048ab5b8a8101906a9d4b0f97cce2309f3ab256ee88321cac9sha512: 3e208050761cab33b8daa308443435783af212a1de1100bc61599aa8cf3523c24e7686ae6d895f755f241e3a356c9cbc2a5631e1e275cd71cb6bcff3fcde6a4assdeep: 49152:Jde6qQeDzB2V7LIbudZsceuu2A7R4rc2mQ1Axgc+ZwS:mVQlLIbiZTQPd4r7egc6type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows, UPX compressed
Version Info:
0: [No Data]

Adware.Sciagnij also known as:

MicroWorld-eScan	Trojan.GenericKD.45661876
FireEye	Generic.mg.2fc0851067fe74b7
Zillya	Adware.BrowseFox.Win32.244996
SUPERAntiSpyware	Trojan.Agent/Gen-Multi
Sangfor	Malware
CrowdStrike	win/malicious_confidence_60% (D)
Cyren	W32/A-50f321ee!Eldorado
Symantec	Trojan.Gen.2
APEX	Malicious
Avast	FileRepMetagen [Adw]
BitDefender	Trojan.GenericKD.45661876
NANO-Antivirus	Trojan.Win32.Sciagnij.eoatyd
Paloalto	generic.ml
AegisLab	Trojan.Multi.Generic.mgrw
Ad-Aware	Trojan.GenericKD.45661876
Emsisoft	Application.Downloader (A)
DrWeb	Adware.Downware.14151
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	HT_SCIAGNIJ_GH0105D7.UVPM
McAfee-GW-Edition	BehavesLike.Win32.PUP.vc
Sophos	Generic PUA HG (PUA)
SentinelOne	Static AI – Suspicious PE
GData	Trojan.GenericKD.45661876
Jiangmin	Downloader.Sciagnij.k
Avira	PUA/Sciagnij.Gen
Antiy-AVL	Trojan/Win32.TSGeneric
Arcabit	Trojan.Generic.D2B8BEB4
ViRobot	Adware.Sciagnij.2205696.IM
Microsoft	Trojan:Win32/Bitrep.B
Cynet	Malicious (score: 90)
AhnLab-V3	PUP/Win32.Sciagnij.R175467
McAfee	Artemis!2FC0851067FE
MAX	malware (ai score=86)
VBA32	Downloader.Sciagnij
Malwarebytes	Adware.Sciagnij
ESET-NOD32	a variant of Win32/Sciagnij.A potentially unwanted
TrendMicro-HouseCall	HT_SCIAGNIJ_GH0105D7.UVPM
Yandex	Trojan.GenAsa!TJgTLC51XAo
Ikarus	PUA.Sciagnij
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	Riskware/Sciagnij
AVG	FileRepMetagen [Adw]
Cybereason	malicious.bf66c3
Qihoo-360	HEUR/QVM11.1.0000.Malware.Gen