Categories: Malware

Babar.37380 information

The Babar.37380 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Babar.37380 virus can do?

Behavioural detection: Executable code extraction – unpacking
Yara rule detections observed from a process memory dump/dropped files/CAPE
CAPE extracted potentially suspicious content
Unconventionial language used in binary resources: Manipuri
Authenticode signature is invalid

How to determine Babar.37380?


File Info:
name: 795CE67CB525BA86787C.mlwpath: /opt/CAPEv2/storage/binaries/1cad831d1d3b9981f3545c394f93dd0944965cc3c3fc969aa1265b91066ceb93crc32: 08DBB896md5: 795ce67cb525ba86787c5798be9743b0sha1: 06fff7597dac5f80c3908c58f54ad627785329e8sha256: 1cad831d1d3b9981f3545c394f93dd0944965cc3c3fc969aa1265b91066ceb93sha512: bcc25e1706cf4e630f09eef301a11af73b46803918478464bc99c6c2131cdd6dd2a8b85f20f977fe37286b1ecb1e1c7382d4885d3f20807b83738c72a1a17f52ssdeep: 6144:g/6bm/6MGEtDn5v86mi/DudxVRbmCigaA:gt/nGEtt86mi/Duzbmntype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T17384BE613EECC431E1B35E3058359BA0167FBC227870550AF6A42B6EEE7138169A1F5Fsha3_384: 43dfb3e0312c7a28ea97290e7e7c3bd099ec460a4bc3b9d24a10f597d47f91c8d81a36be15a2bca338ef95b9d330c956ep_bytes: e8433d0000e989feffff8bff558bec83timestamp: 2021-02-20 07:10:34
Version Info:
FileVersion: 4.75.86.8Copyrighz: Copyright (C) 2022, pazkarteProjectVersion: 98.81.74.73

Babar.37380 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Generic.4!c
tehtris	Generic.Malware
MicroWorld-eScan	Gen:Variant.Babar.37380
ClamAV	Win.Packed.Agen-9953297-0
FireEye	Generic.mg.795ce67cb525ba86
CAT-QuickHeal	Ransom.Stop.P5
McAfee	RDN/Generic.dx
Cylance	Unsafe
VIPRE	Gen:Variant.Babar.37380
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Riskware ( 0040eff71 )
Alibaba	Trojan:Win32/Raccrypt.1ab5196e
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.97dac5
Cyren	W32/Kryptik.GOQ.gen!Eldorado
Symantec	Packed.Generic.616
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Kryptik.HPGD
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	HEUR:Trojan.Win32.Strab.gen
BitDefender	Gen:Variant.Babar.37380
NANO-Antivirus	Trojan.Win32.GenSHCode.joegtk
Avast	Win32:AceCrypter-T [Cryp]
Tencent	Trojan-Spy.Win32.Stealer.16000356
Ad-Aware	Gen:Variant.Babar.37380
Sophos	Mal/Generic-S + Troj/Krypt-IR
DrWeb	Trojan.Siggen17.41466
Zillya	Trojan.Kryptik.Win32.3746789
TrendMicro	Ransom.Win32.STOP.SMYXCJ5
McAfee-GW-Edition	BehavesLike.Win32.Lockbit.fh
Emsisoft	Gen:Variant.Babar.37380 (B)
SentinelOne	Static AI – Suspicious PE
GData	Win32.Trojan.PSE.5LZ3U4
Jiangmin	Trojan.Strab.atu
Avira	TR/AD.GenSHCode.hifny
MAX	malware (ai score=89)
Arcabit	Trojan.Babar.D9204
Microsoft	Trojan:Win32/Raccrypt.GY!MTB
Google	Detected
AhnLab-V3	Infostealer/Win.SmokeLoader.R485110
Acronis	suspicious
ALYac	Gen:Variant.Babar.37380
TACHYON	Trojan/W32.Strab.373760
Malwarebytes	Trojan.MalPack.GS
Rising	Backdoor.Mokes!8.619 (TFE:5:gS9FjOhmpdQ)
Yandex	Trojan.Kryptik!zBmLPt8zl/U
Ikarus	Trojan.Win32.Glupteba
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Kryptik.PSE!tr
AVG	Win32:AceCrypter-T [Cryp]
Panda	Trj/Agent.ICA
CrowdStrike	win/malicious_confidence_100% (W)