Categories: Malware

Application.Bundler.BOP removal tips

The Application.Bundler.BOP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Application.Bundler.BOP virus can do?

Behavioural detection: Executable code extraction – unpacking
CAPE extracted potentially suspicious content
Unconventionial language used in binary resources: Russian
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
CAPE detected the shellcode get eip malware family
Anomalous binary characteristics
Yara detections observed in process dumps, payloads or dropped files

How to determine Application.Bundler.BOP?


File Info:
name: 01024E384E636146641B.mlwpath: /opt/CAPEv2/storage/binaries/ade51b8633dfe05ddca4ca4ea4233b3763f62a4c0268a00e5f0430fd190c5414crc32: F367E83Fmd5: 01024e384e636146641b586bc063a400sha1: 2e38feb83f030e3935a91df2440c413f10c2d66csha256: ade51b8633dfe05ddca4ca4ea4233b3763f62a4c0268a00e5f0430fd190c5414sha512: afc791fe9889891b07cc119e3f738a99f5a14a2a7d5c1b0edfb6b177daa2ff549d1d16abf200c4f34fcfee2420e3a99b16b9a635d9755981112bed29757e5b15ssdeep: 49152:cQZnJ3oJWXqrz3Zw7Hg3oHBKsUWLOhvnJFm/eXx/HxBWrMRUe8lFLTtWkSvDmc43:cQEdrLs6oHBKsUWL+v3m/eZWN1lFAkS9type: PE32 executable (console) Intel 80386, for MS Windowstlsh: T1F3D52310B2929432E5B313368F7C4B5E456CAA211F2455FF97C80A6EDF352C1EA31B6Bsha3_384: 9c9f614302c800f0df0c661867705c559045eb98308b3868accf02b0511a997ec77363ebd72b268310a8f5bbec1f56b6ep_bytes: e849070000e974feffff8b4df464890dtimestamp: 2018-11-03 11:12:54
Version Info:
0: [No Data]

Application.Bundler.BOP also known as:

Bkav	W32.AIDetectMalware
tehtris	Generic.Malware
MicroWorld-eScan	Application.Bundler.BOP
FireEye	Generic.mg.01024e384e636146
CAT-QuickHeal	Trojan.Mauvaise.SL1
Skyhigh	BehavesLike.Win32.Generic.vc
McAfee	PUP-HGF
Malwarebytes	Crypt.Trojan.Malicious.DDS
Zillya	Trojan.Chapak.Win32.65448
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 0054256c1 )
Alibaba	Trojan:Win32/Chapak.21916255
K7GW	Trojan ( 005404491 )
CrowdStrike	win/malicious_confidence_90% (W)
BitDefenderTheta	Gen:NN.ZexaF.36802.UwW@a0yE2ink
VirIT	Trojan.Win32.Packed2.CJGD
Symantec	Adware.IstartSurf
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Kryptik.GMHN
Cynet	Malicious (score: 99)
APEX	Malicious
Kaspersky	Trojan.Win32.Chapak.bcfo
BitDefender	Application.Bundler.BOP
NANO-Antivirus	Trojan.Win32.Packed2.fjwnon
Avast	Win32:Kryptik-PRH [Adw]
Tencent	Malware.Win32.Gencirc.10b2719a
Sophos	Generic Reputation PUA (PUA)
F-Secure	Heuristic.HEUR/AGEN.1318781
DrWeb	Trojan.Packed2.41395
VIPRE	Application.Bundler.BOP
TrendMicro	TROJ_GEN.R002C0PB824
Emsisoft	Application.Bundler.BOP (B)
SentinelOne	Static AI – Suspicious PE
GData	Application.Bundler.BOP
Jiangmin	Trojan.Chapak.acn
Varist	W32/S-2027a80f!Eldorado
Avira	HEUR/AGEN.1318781
Antiy-AVL	Trojan/Win32.Chapak
Kingsoft	Win32.Trojan.Generic.a
Xcitium	Application.Win32.IStartSurf.PS@8c4m91
Arcabit	Application.Bundler.BOP
ViRobot	Adware.Chapak.2855936.JY
ZoneAlarm	Trojan.Win32.Chapak.bcfo
Microsoft	SoftwareBundler:Win32/Prepscram
Google	Detected
AhnLab-V3	PUP/Win32.StartSurf.R242735
VBA32	BScope.Adware.Prepscram
ALYac	Application.Bundler.BOP
MAX	malware (ai score=100)
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002C0PB824
Rising	Trojan.Kryptik!1.B4A9 (CLASSIC)
Yandex	Trojan.GenAsa!6XC41HuWp98
Ikarus	PUA.Win32.Prepscram
MaxSecure	Trojan.Malware.73886998.susgen
Fortinet	W32/GenKryptik.CUPB!tr
AVG	Win32:Kryptik-PRH [Adw]
DeepInstinct	MALICIOUS
alibabacloud	Trojan:Win/Chapak.bcfo