Application.SoftCnApp.236 malicious file

The Application.SoftCnApp.236 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Application.SoftCnApp.236 virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Enumerates physical drives

How to determine Application.SoftCnApp.236?


File Info:
name: E2A70AFEF5C8DFA23D9C.mlw
path: /opt/CAPEv2/storage/binaries/473b7e4e626e534de7463004bda80a7fca6830ecceeb43c35f2ecf01162a0bf5
crc32: 71D46F28
md5: e2a70afef5c8dfa23d9c1ae143969d79
sha1: f923ea92e5db7b0fc0ffa4ff18d906588e19f414
sha256: 473b7e4e626e534de7463004bda80a7fca6830ecceeb43c35f2ecf01162a0bf5
sha512: 1f830af3a3810ba0ce29cd73c63429d338999f1a5d5f167529f329bc8a4a8bc9fa5934d123d637f4bfe7d029a4e1792425e93f3519ae56dfed656191a3b3fc18
ssdeep: 49152:08PpYbXv34Kevn2QqbBK2wK9X4cUg1TjopGHPLYgQSAkVP5MiMKXFO:jubf30v2bbBKO9Pr5DYgQSAkVmizXI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14FE5AD06F682B13DE6920D7021EA5B7B88356C245724CCC7DB913A7F8A302DD7B3A759
sha3_384: f887de63c57fa838f7e502a0836f8f1b310b5d2de018aa67e0309dd7904da4edc91d2f8e12825e7e2c399c7849f87197
ep_bytes: e8d3080000e97afeffffcccccccccccc
timestamp: 2024-03-21 02:49:15

Version Info:
CompanyName: 深圳市重诚知随科技有限公司
FileDescription: 贝壳PDF阅读器
InternalName: 贝壳PDF阅读器
LegalCopyright: Copyright (C) 2022 深圳市重诚知随科技有限公司
OriginalFilename: BKUt.exe
ProductName: 贝壳PDF阅读器
ProductVersion: 5,9,1,40321
Translation: 0x0804 0x04b0

Application.SoftCnApp.236 also known as:

MicroWorld-eScan	Gen:Variant.Application.SoftCnApp.236
ALYac	Gen:Variant.Application.SoftCnApp.236
Cylance	unsafe
K7AntiVirus	Adware ( 00570d6e1 )
K7GW	Adware ( 00570d6e1 )
CrowdStrike	win/grayware_confidence_100% (D)
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
Alibaba	AdWare:Win32/Softcnapp.85d26c59
Ikarus	PUA.Softcnapp
Gridinsoft	PUP.Win32.ChinAd.sa
Arcabit	Trojan.Application.SoftCnApp.236
MAX	malware (ai score=79)
Malwarebytes	PUP.Optional.ChinAd.DDS
SentinelOne	Static AI – Suspicious PE
Cybereason	malicious.ef5c8d
DeepInstinct	MALICIOUS

How to remove Application.SoftCnApp.236?

Application.SoftCnApp.236 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X