Babar.200021 removal tips

The Babar.200021 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Babar.200021 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Babar.200021?


File Info:
name: 05FDEF730FA2B1F12B72.mlw
path: /opt/CAPEv2/storage/binaries/ba303c61750a8a0ffe685a8716abf89496593c22828dc98c2a23329cc13c1333
crc32: AAC88E74
md5: 05fdef730fa2b1f12b72d0224203a15d
sha1: ccc1db17f7519f267bf8a0b53c3a96175faa7a8c
sha256: ba303c61750a8a0ffe685a8716abf89496593c22828dc98c2a23329cc13c1333
sha512: f1ca0cecb4eb0c65cae514a57c7deeb962fa23d162b85f6911388d27ff193e8f6dcf9ba98d1664bd049238d44e1235035ca447702db566c47b8803f9ba952af6
ssdeep: 24576:E2iZ58tC1/Whi0aHFWuPPKMQz+gLGV+hTdwnBXSsxPipe1rlTSaoU1dOu18THc73:EZ58MZF+t4nBSs3T1OHc77yUIEtOF6
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T1D3C53B22FA04603FDC7B1B3654639594993FAB913A06DC1F4AE41D8CDFB66813E3660B
sha3_384: 2bb54779e286f2951b512b5a217d9aaa5d8f9e5c4b7f2de4eadf1289f1f5e5c765ffa10362450c081b8093bd023db5d9
ep_bytes: 558bec83c4c0b868aa6100e888a7deff
timestamp: 2023-04-11 14:07:56

Version Info:
FileVersion: 1.0.0.0
ProductVersion: 1.0.0.0
Translation: 0x0409 0x04e4

Babar.200021 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Agentb.X!c
AVG	Win32:Malware-gen
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Variant.Babar.200021
FireEye	Gen:Variant.Babar.200021
Skyhigh	BehavesLike.Win32.BadFile.vh
McAfee	Artemis!05FDEF730FA2
Cylance	unsafe
Zillya	Trojan.Agent.Win32.3410158
Sangfor	Trojan.Win32.Agent.Vpdb
Alibaba	Trojan:Win32/Redcap.be24a64b
Symantec	ML.Attribute.HighConfidence
Cynet	Malicious (score: 100)
Kaspersky	Trojan.Win32.Agentb.lcba
BitDefender	Gen:Variant.Babar.200021
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Babar.200021 (B)
F-Secure	Trojan.TR/Redcap.bivwn
VIPRE	Gen:Variant.Babar.200021
Sophos	Mal/Generic-S
GData	Gen:Variant.Babar.200021
Avira	TR/Redcap.bivwn
Antiy-AVL	Trojan/Win32.Agentb
Arcabit	Trojan.Babar.D30D55
ZoneAlarm	Trojan.Win32.Agentb.lcba
ALYac	Gen:Variant.Babar.200021
MAX	malware (ai score=89)
Rising	Trojan.Delf!8.67 (TFE:5:63NzpzPoAGE)
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/PossibleThreat
DeepInstinct	MALICIOUS
alibabacloud	Trojan.Win.UnkAgent

How to remove Babar.200021?

Babar.200021 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X