Malware

What is “Application.AdSoft (A)”?

Malware Removal

The Application.AdSoft (A) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.AdSoft (A) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Deletes executed files from disk
  • Touches a file containing cookies, possibly for information gathering

How to determine Application.AdSoft (A)?



File Info:

name: 6313A9D519C5443D9370.mlw
path: /opt/CAPEv2/storage/binaries/564c414d820e62e18ad315d83d0dde46f44fbffa2eb058e3b43adcf797f9209c
crc32: 780F334B
md5: 6313a9d519c5443d9370e5ed3abef59c
sha1: 1781e1edaa1e1d2c33463a61fdb9982fac27aaea
sha256: 564c414d820e62e18ad315d83d0dde46f44fbffa2eb058e3b43adcf797f9209c
sha512: f34f50a3dfb1555b9a0c885050a2b597e464f0110379af18a52f34bf6b2b79025e5e8bc2f966a7529fc5adc3b8a405d81dbad2b71b7551f94979c0e2b4d9a3c3
ssdeep: 98304:M07zahczT5PUjZJh2teT9ZagH9afp7jaxfKnc+Eh8:uhczTZUjZJh2tE9ZagHchSxZ+E6
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T164063391FAB83533C72863B92EECC419CA5E6BE021B0B54C7DEC7E9897012A751CD752
sha3_384: 6bce4ac76f8700231eb7a6375b2833e20895a1269d87285375f4966a0c91949a7d1ac687024725ab4680271d0d05d6ee
ep_bytes: 558bec83c4c453565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName: Lavians Inc.                                                
FileDescription: eMachines Wireless Laptop Router Setup                      
FileVersion:                     
LegalCopyright:                                                                                                     
ProductName: eMachines Wireless Laptop Router                            
ProductVersion:                                                   
Translation: 0x0000 0x04b0

Application.AdSoft (A) also known as:

BkavW32.Common.08D9DEF7
LionicAdware.Win32.Kronaldaler.2!c
Cylanceunsafe
AlibabaAdWare:Win32/DGTSoft.a4030e04
ESET-NOD32multiple detections
CynetMalicious (score: 100)
Kasperskynot-a-virus:AdWare.Win32.Agent.kdfp
NANO-AntivirusTrojan.Win32.Homepage.egkvid
AvastFileRepMalware [Misc]
EmsisoftApplication.AdSoft (A)
Trapminemalicious.moderate.ml.score
SophosGeneric Reputation PUA (PUA)
Antiy-AVLGrayWare[Modifier]/Win32.Kronaldaler
XcitiumMalware@#2x7pgnl9gtvkz
MicrosoftBrowserModifier:Win32/Kronaldaler
ZoneAlarmnot-a-virus:AdWare.Win32.Agent.kdfp
GDataWin32.Trojan.BrowserModifier.B
GoogleDetected
VBA32Adware.Agent
MalwarebytesGeneric.Malware.AI.DDS
RisingTrojan.Kronaldaler!8.13AAF (CLOUD)
MaxSecureTrojan.Malware.73881374.susgen
FortinetRiskware/DGTSoft
AVGFileRepMalware [Misc]
DeepInstinctMALICIOUS

How to remove Application.AdSoft (A)?

Application.AdSoft (A) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment