Malware

Application.Bundler.iStartSurf.XM removal

Malware Removal

The Application.Bundler.iStartSurf.XM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.Bundler.iStartSurf.XM virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Russian
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Application.Bundler.iStartSurf.XM?



File Info:

name: 23BAACB9AA8F3EE69EF0.mlw
path: /opt/CAPEv2/storage/binaries/d345e912ce7edbdba7f6285f41e4d10fb97e5f88f72c89ae0900d2623f9ba8fd
crc32: E0426872
md5: 23baacb9aa8f3ee69ef01e63ccc6d917
sha1: 7ac6252208552c5d293c5d1384c31a59d0c4cd83
sha256: d345e912ce7edbdba7f6285f41e4d10fb97e5f88f72c89ae0900d2623f9ba8fd
sha512: d63515edd3b97b87ec720a329868ee7d298d53b0173ec132472aea1f7a18d994f480fb8a8b383d6027d2be1ecb0bc50a89682378262bc724d631f2bed33881e9
ssdeep: 24576:bhbvoyGx4gXM7DO2zQDIfUIu/yju+Go4EEfgf:bNzgXMnzQkfUIuajuXo40
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10795D020B9B2E037D8B340B189789729516DF7310F2548DFA3C86A1E6F759D2AB31637
sha3_384: 9a780f51b0bbb691c4c9a1148e5919224bd00df10dd2776016a38b0951ecc22d18b684bc8d414b27abe186131d71104a
ep_bytes: e8cd080000e974feffffe9265f000055
timestamp: 2018-11-06 11:58:13


Version Info:

0: [No Data]

Application.Bundler.iStartSurf.XM also known as:

LionicTrojan.Win32.Chapak.4!c
Elasticmalicious (high confidence)
DrWebTrojan.Vittalia.17867
MicroWorld-eScanApplication.Bundler.iStartSurf.XM
FireEyeGeneric.mg.23baacb9aa8f3ee6
CAT-QuickHealTrojan.Mauvaise.SL1
SkyhighGenericRXGP-AR!23BAACB9AA8F
ALYacApplication.Bundler.iStartSurf.XM
MalwarebytesCrypt.Trojan.Malicious.DDS
ZillyaTrojan.Chapak.Win32.38849
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0054256c1 )
AlibabaTrojan:Win32/Chapak.b23e0dc8
K7GWTrojan ( 0054256c1 )
BitDefenderThetaGen:NN.ZexaF.36680.ZvW@aulAYhpk
SymantecAdware.IstartSurf
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Kryptik.GMLU
CynetMalicious (score: 99)
APEXMalicious
KasperskyTrojan.Win32.Chapak.bcnm
BitDefenderApplication.Bundler.iStartSurf.XM
NANO-AntivirusTrojan.Win32.Vittalia.fjxhkd
SUPERAntiSpywareAdware.IStartSurf/Variant
AvastWin32:TrojanX-gen [Trj]
TencentMalware.Win32.Gencirc.10b29775
EmsisoftApplication.Bundler.iStartSurf.XM (B)
F-SecureHeuristic.HEUR/AGEN.1366949
VIPREApplication.Bundler.iStartSurf.XM
SophosTroj/Agent-BADC
IkarusPUA.Win32.Prepscram
JiangminAdWare.StartSurf.rlr
WebrootW32.Adware.Gen
VaristW32/StartSurf.BH.gen!Eldorado
AviraHEUR/AGEN.1366949
Antiy-AVLTrojan/Win32.Chapak
KingsoftWin32.Trojan.Generic.a
MicrosoftSoftwareBundler:Win32/Prepscram
XcitiumApplication.Win32.IStartSurf.PS@8c4m91
ArcabitApplication.Bundler.iStartSurf.XM
ZoneAlarmTrojan.Win32.Chapak.bcnm
GDataApplication.Bundler.iStartSurf.XM
GoogleDetected
AhnLab-V3PUP/Win32.IStartSurf.R243047
McAfeeGenericRXGP-AR!23BAACB9AA8F
MAXmalware (ai score=100)
VBA32BScope.Adware.Prepscram
Cylanceunsafe
PandaTrj/Genetic.gen
RisingTrojan.Kryptik!1.B4D1 (CLASSIC)
YandexTrojan.GenAsa!aBoZG8M3znw
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/GenKryptik.COAQ!tr
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/grayware_confidence_70% (W)

How to remove Application.Bundler.iStartSurf.XM?

Application.Bundler.iStartSurf.XM removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment