Malware

How to remove “Application.DControl.1”?

Malware Removal

The Application.DControl.1 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.DControl.1 virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Attempts to disable Windows Defender
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Application.DControl.1?



File Info:

name: 8903498F39E49291BA22.mlw
path: /opt/CAPEv2/storage/binaries/22e47f6549c45db988202596bf4591e48fc58e27240666acb632d3563a3c3188
crc32: CF1A1588
md5: 8903498f39e49291ba229722f8a52360
sha1: eb2c5a6a9b224cb37672a14c68fb0b46da7b6598
sha256: 22e47f6549c45db988202596bf4591e48fc58e27240666acb632d3563a3c3188
sha512: f69f329c6858ea976ece0474adf2f4236466c59f6aaa0ae73a96b25b2a82e3b162f8bf60785c0a7412bbc91db421c8f17688cdaba9791b574f5132174a727ba9
ssdeep: 6144:k1db49+rEg02CadFLPODzcwV4fS4PWZiatafDzB7Go8N72lkLFG:kjkArEN2NjMRV4K4PWZiCMJd8NKkLA
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D1641248F146E091EEE7153599B5EBD015AAFC23ACE0998332ED3F2F34726B3C616854
sha3_384: 8d13183bb1a0317a2cee5146aa84e1a1c7a2e0c61c414b8a46be5cf4044492407721cb984aacd2ea5630a4331e6e1131
ep_bytes: 60be007047008dbe00a0f8ff57eb0b90
timestamp: 2010-04-16 07:47:33


Version Info:

FileVersion: 1.0.0.0
Comments: =Defender Control
FileDescription: Defender Control
LegalCopyright: Copyright © 2015 www.sordum.org All Rights Reserved.
Coder: By BlueLife
CompanyName: www.sordum.org
Translation: 0x0409 0x04b0

Application.DControl.1 also known as:

BkavW32.Common.F8BCFA83
MicroWorld-eScanGen:Variant.Application.DControl.1
SkyhighBehavesLike.Win32.Injector.fc
McAfeeArtemis!8903498F39E4
Cylanceunsafe
CrowdStrikewin/grayware_confidence_60% (D)
AlibabaTrojanDownloader:Win32/Trone.57030daa
APEXMalicious
KasperskyTrojan-Downloader.Win32.Trone.jc
BitDefenderGen:Variant.Application.DControl.1
EmsisoftGen:Variant.Application.DControl.1 (B)
VIPREGen:Variant.Application.DControl.1
FireEyeGen:Variant.Application.DControl.1
WebrootW32.Riskware.Defendercontrol
ArcabitTrojan.Application.DControl.1
ZoneAlarmTrojan-Downloader.Win32.Trone.jc
GDataGen:Variant.Application.DControl.1
CynetMalicious (score: 100)
ALYacGen:Variant.Application.DControl.1
MAXmalware (ai score=71)
VBA32Trojan.Zpevdo
RisingDownloader.Trone!8.120F0 (CLOUD)
Cybereasonmalicious.f39e49

How to remove Application.DControl.1?

Application.DControl.1 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment