Malware

Application.Bulz.473488 removal instruction

Malware Removal

The Application.Bulz.473488 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.Bulz.473488 virus can do?

  • CAPE extracted potentially suspicious content
  • .NET file is packed/obfuscated with Confuser
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Application.Bulz.473488?



File Info:

name: 745A36AA3B64C8AEC097.mlw
path: /opt/CAPEv2/storage/binaries/0150bf132d32471c0f08673109cc5452abdcedfef1c9d2502d2139f0ee90ea38
crc32: 05EF3D14
md5: 745a36aa3b64c8aec097705318f2b9d7
sha1: bae8f755083505559ce001a5c624b444f3d0a9fe
sha256: 0150bf132d32471c0f08673109cc5452abdcedfef1c9d2502d2139f0ee90ea38
sha512: 195f0d1ec4f1c8f475190e86bf1843b16a8e968ff0a691a77b42b777bff779a635f59c3d93083777bcfe07f7b1afc4763b4e3fd0d2973e3747d31cf2cd6cf9f8
ssdeep: 24576:+afKnNkhl0laKskabEXk+OVH+q7cWDpHXo1bbShTUfKQSrIAKcF:+Jn7lo340+OL9uc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1FBB5A448B150359FC47BCDB289751F24EFA06866470BD2C3AA5735E9993DA8BCF0C1A3
sha3_384: 1d5b500945e8030b3aa06e15f6224a935d26ebc4d4ea4f8f2cbf72c75cab7c429611c9af3813b728445210ce1e52c6e6
ep_bytes: ff250020400000000000000000000000
timestamp: 2016-01-29 04:30:51


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: Application Automation, LLC
FileDescription: RaccoonBot
FileVersion: 1.10.3.1798
InternalName: Main.exe
LegalCopyright: Copyright © 2015
LegalTrademarks: 
OriginalFilename: Main.exe
ProductName: RaccoonBot
ProductVersion: 1.10.3.1798
Assembly Version: 1.10.3.1798

Application.Bulz.473488 also known as:

LionicRiskware.Win32.Generic.1!c
MicroWorld-eScanGen:Variant.Application.Bulz.473488
FireEyeGen:Variant.Application.Bulz.473488
ALYacGen:Variant.Application.Bulz.473488
MalwarebytesGeneric.Malware/Suspicious
SangforTrojan.Win32.Agent.V19i
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/GameTool.U potentially unsafe
APEXMalicious
BitDefenderGen:Variant.Application.Bulz.473488
VIPREGen:Variant.Application.Bulz.473488
EmsisoftGen:Variant.Application.Bulz.473488 (B)
GDataGen:Variant.Application.Bulz.473488
WebrootW32.Gen.Bt
Antiy-AVLRiskWare/MSIL.GameTool
ArcabitTrojan.Application.Bulz.D73990
MicrosoftProgram:Win32/Wacapew.C!ml
MAXmalware (ai score=98)
Cylanceunsafe
RisingTrojan.Win32.Generic.19BF57A6 (C64:YzY0OgzZY3kfJ00uog)
YandexRiskware.Agent!lNZs9KGCmps
MaxSecureTrojan.Malware.300983.susgen
Cybereasonmalicious.a3b64c
DeepInstinctMALICIOUS

How to remove Application.Bulz.473488?

Application.Bulz.473488 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment