Malware

Application.Generic.3042227 malicious file

Malware Removal

The Application.Generic.3042227 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Application.Generic.3042227 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Deletes its original binary from disk
  • Created a process from a suspicious location
  • Creates a copy of itself

How to determine Application.Generic.3042227?



File Info:

name: DC18FDE3570330F7B6ED.mlw
path: /opt/CAPEv2/storage/binaries/e755d29b4013e84a39afc0f3685e7b89934547c608200057609ce18d5264c19c
crc32: 54CCBAEA
md5: dc18fde3570330f7b6ed06272f00994e
sha1: 8d8417a4511161a878127be710b40bbba2753706
sha256: e755d29b4013e84a39afc0f3685e7b89934547c608200057609ce18d5264c19c
sha512: 32a46daff3f2de225dfac73754aeec730d5e030707b36e565d5a0658e9bb10d009c81ed38bf907fb701201db4c77293d4d7de22f55e37388a7a5a1b5041b09f0
ssdeep: 12288:iXHunvfy2pq+XcQh8xOa5IPzPxUPPoZbJB3RSPmocSV5YS8HitApA5E21E:yHIfhpq+MQ6Oa9PoZDRSu1I78hD
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1790523E201C1A98CCFBAEAFD0A69664E1E18230073BD5577DF4BFBBF1C565CA41054A8
sha3_384: 952265c9ebfb871130b53ca373fe9c7f5fe75d324faba5434352ae3da6781ace1c0132bb2608bbf6252d6a1843019a11
ep_bytes: 6800000000585368d117a07b5f687182
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Application.Generic.3042227 also known as:

BkavW32.AIDetect.malware2
LionicRiskware.Win32.BitCoinMiner.1!c
Elasticmalicious (high confidence)
MicroWorld-eScanApplication.Generic.3042227
FireEyeApplication.Generic.3042227
McAfeeGenericRXAA-AA!DC18FDE35703
MalwarebytesTrojan.Crypt.UPX
ZillyaTool.BitCoinMiner.Win32.23826
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0058c5ff1 )
AlibabaMalware:Win32/km_280b22.None
K7GWTrojan ( 005762bf1 )
Cybereasonmalicious.451116
BitDefenderThetaGen:NN.ZexaF.34182.XmW@aW3YFv
CyrenW32/CoinMiner.CQ.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.HITO
APEXMalicious
Paloaltogeneric.ml
Kasperskynot-a-virus:HEUR:RiskTool.Win32.BitCoinMiner.vho
BitDefenderApplication.Generic.3042227
AvastWin32:CoinminerX-gen [Trj]
TencentTrojan.Win32.Coinminer.yi
EmsisoftApplication.Generic.3042227 (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
DrWebTrojan.Packed2.43250
VIPREPacker.NSAnti.Gen (v)
TrendMicroTROJ_GEN.R002C0DJ221
McAfee-GW-EditionBehavesLike.Win32.Generic.bc
SophosML/PE-A + Mal/HckPk-A
IkarusTrojan.Win32.Injector
JiangminRiskTool.BitCoinMiner.aikn
MaxSecureTrojan.Malware.300983.susgen
AviraTR/Crypt.ULPM.Gen
MAXmalware (ai score=74)
Antiy-AVLTrojan/Generic.ASBOL.C68D
GridinsoftRansom.Win32.Miner.sa
MicrosoftTrojan:Win32/Injector.RAQ!MTB
GDataApplication.Generic.3042227
CynetMalicious (score: 100)
AhnLab-V3Malware/Gen.Reputation.C4303086
VBA32Trojan.Packed
TrendMicro-HouseCallTROJ_GEN.R002C0DJ221
RisingTrojan.Injector!1.C865 (CLOUD)
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/Kryptik.EAHK!tr
AVGWin32:CoinminerX-gen [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Application.Generic.3042227?

Application.Generic.3042227 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment