Trojan

Should I remove “AIT:Trojan.Nymeria.3686 (B)”?

Malware Removal

The AIT:Trojan.Nymeria.3686 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What AIT:Trojan.Nymeria.3686 (B) virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Uses Windows utilities for basic functionality
  • Anomalous binary characteristics

How to determine AIT:Trojan.Nymeria.3686 (B)?



File Info:

name: D0B4DFF5C718CB3DDB59.mlw
path: /opt/CAPEv2/storage/binaries/b2040ae657f691c74b6c1dd0df7e3cf5d8ac8ce01ac3381550bcb39ef6abc49a
crc32: 6C5ABBFC
md5: d0b4dff5c718cb3ddb59cfbeccfe87d5
sha1: dbb7f8c359a1389b4839fd57bf3be8ff2abd90bf
sha256: b2040ae657f691c74b6c1dd0df7e3cf5d8ac8ce01ac3381550bcb39ef6abc49a
sha512: b983dfa5487677c0381979a229cb62e46f0095ccf1f6a8f0755c66ef0ad6fa6f8e0f053b77a0ca3def1c6fd54c0bfb435e7019856d5f44950b628cd91d2a3647
ssdeep: 49152:9h+ZkldoPK8YaOF7S+UpXOZdQp4SwfB6T2ih8uSiUoD9olhifkzSG62c33A03b3I:u2cPK8s
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19C461201B7E5C0F5EEAB6172CE2A76F556F85E04C4239D6F1F943C69B834520123EA2E
sha3_384: 4ad52d457cbcdfa2ea7d3ef1e04618472b7abea40ccb01ee071976dc8fda03e68f41e1fee8b3febd15dbb1b0a2ef9882
ep_bytes: e8c8d00000e97ffeffffcccccccccccc
timestamp: 2020-06-16 13:35:58


Version Info:

CompanyName: Adobe Inc.
FileDescription: Adobe Installer
FileVersion: 5.1.0.407
InternalName: Adobe Installer
LegalCopyright: © 2020 Adobe. All rights reserved.
OriginalFilename: Adobe Installer
ProductName: Adobe Installer
ProductVersion: 5.1.0.407
Translation: 0x0409 0x04b0

AIT:Trojan.Nymeria.3686 (B) also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanAIT:Trojan.Nymeria.3686
FireEyeGeneric.mg.d0b4dff5c718cb3d
ALYacAIT:Trojan.Nymeria.3686
CylanceUnsafe
K7AntiVirusTrojan ( 700000111 )
AlibabaTrojanDropper:Win32/Generic.edfe3869
K7GWTrojan ( 700000111 )
CrowdStrikewin/malicious_confidence_100% (D)
CyrenW32/Trojan.VPIH-9153
SymantecTrojan.Gen.MBT
APEXMalicious
CynetMalicious (score: 100)
BitDefenderAIT:Trojan.Nymeria.3686
AvastWin32:Malware-gen
EmsisoftAIT:Trojan.Nymeria.3686 (B)
TrendMicroTROJ_GEN.R002C0PHF21
McAfee-GW-EditionBehavesLike.Win32.Generic.th
SophosMal/Generic-S
WebrootW32.Malware.Gen
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Occamy.CB2
ViRobotTrojan.Win32.Z.Nymeria.5481520
GDataAIT:Trojan.Nymeria.3686 (2x)
McAfeeArtemis!D0B4DFF5C718
MAXmalware (ai score=86)
TrendMicro-HouseCallTROJ_GEN.R002C0PHF21
IkarusDropper.AutoIt
eGambitUnsafe.AI_Score_79%
FortinetW32/Keylogfus!tr
AVGWin32:Malware-gen
Cybereasonmalicious.5c718c
PandaTrj/CI.A
MaxSecureTrojan.Malware.102469970.susgen

How to remove AIT:Trojan.Nymeria.3686 (B)?

AIT:Trojan.Nymeria.3686 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment