Malware

How to remove “Application.Agent.ETN”?

Malware Removal

The Application.Agent.ETN is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.Agent.ETN virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Russian
  • Unconventionial language used in binary resources: Russian
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Anomalous binary characteristics
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Application.Agent.ETN?



File Info:

name: 83F1B72BA4ED550788A9.mlw
path: /opt/CAPEv2/storage/binaries/7dd3dcc0558d3f5cc24fe2ede31a63a38e6b077d249ab751bf1845878391ee80
crc32: 01CCF5CE
md5: 83f1b72ba4ed550788a9d74ca700119d
sha1: 5f5bf43a13fedc42ab6e0fe9a828dabb49fc1d2c
sha256: 7dd3dcc0558d3f5cc24fe2ede31a63a38e6b077d249ab751bf1845878391ee80
sha512: 60c28beaa47043cc48251c54bfdd6864df5b99db88b4f90e91529c9ab8e8926b5766ada4e9afbfe7213f938bc94f157e17dd53a4361029cfff04ca2a54ab0fd3
ssdeep: 24576:fYYE8qD2+Y/YwdrCG7UzU1UMy7HTy7f9xIhmGzHqRCixV4:fpaY/Yi7UzU1J7f92hdcvxV4
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10BC5D010B9B2E437E8B340B18DB9866D516DFA300B2198DF63C8591E5F75AC2EB31637
sha3_384: b56b07b75e2fa9411d79536bc77288d1c4c6a3680eaa2cd08b2d6010da1d0a644b09d968ce5229682b4dccbdd03220fd
ep_bytes: e8c9080000e974feffffe9225f000055
timestamp: 2018-11-09 12:52:25


Version Info:

CompanyName: TODO: 
FileDescription: TODO: 
FileVersion: 1.0.0.1
LegalCopyright: Copyright (C) 2018
ProductName: TODO: 
ProductVersion: 1.0.0.1
Translation: 0x0419 0x04b0

Application.Agent.ETN also known as:

LionicTrojan.Win32.Chapak.4!c
DrWebTrojan.Vittalia.17905
MicroWorld-eScanApplication.Agent.ETN
FireEyeGeneric.mg.83f1b72ba4ed5507
CAT-QuickHealTrojan.Mauvaise.SL1
SkyhighPUP-HGF
McAfeePUP-HGF
MalwarebytesCrypt.Trojan.Malicious.DDS
ZillyaTrojan.Chapak.Win32.33590
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0054256c1 )
AlibabaTrojan:Win32/Chapak.048a1cfc
K7GWTrojan ( 00540c9c1 )
BitDefenderThetaGen:NN.ZexaF.36744.Hw0@aCsNrNkk
VirITTrojan.Win32.Vittalia.BAMR
SymantecAdware.IstartSurf
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.GMOF
APEXMalicious
CynetMalicious (score: 99)
KasperskyTrojan.Win32.Chapak.beyz
BitDefenderApplication.Agent.ETN
NANO-AntivirusTrojan.Win32.Vittalia.fjziwi
AvastWin32:AdwareX-gen [Adw]
TencentMalware.Win32.Gencirc.10b110da
TACHYONTrojan/W32.Chapak.2651136
SophosTroj/Agent-BADC
F-SecureHeuristic.HEUR/AGEN.1310324
VIPREApplication.Agent.ETN
EmsisoftApplication.Agent.ETN (B)
SentinelOneStatic AI – Malicious PE
GDataApplication.Agent.ETN
JiangminAdWare.StartSurf.rmc
WebrootW32.Malware.gen
GoogleDetected
AviraHEUR/AGEN.1310324
Antiy-AVLTrojan/Win32.Chapak
KingsoftWin32.Trojan.Generic.a
XcitiumApplication.Win32.IStartSurf.PS@8c4m91
ArcabitApplication.Agent.ETN
ZoneAlarmTrojan.Win32.Chapak.beyz
MicrosoftSoftwareBundler:Win32/Prepscram
VaristW32/S-0d9c7482!Eldorado
AhnLab-V3PUP/Win32.IStartSurf.R243821
VBA32Trojan.Chapak
ALYacApplication.Agent.ETN
PandaTrj/Genetic.gen
RisingTrojan.Kryptik!1.B4D5 (CLASSIC)
YandexTrojan.GenAsa!v7uuv/zAOmc
IkarusPUA.Win32.Prepscram
MaxSecureTrojan.Malware.12124337.susgen
FortinetW32/GenKryptik.COAQ!tr
AVGWin32:AdwareX-gen [Adw]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Application.Agent.ETN?

Application.Agent.ETN removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment