Backdoor

How to remove “Backdoor.Dodiw.A5”?

Malware Removal

The Backdoor.Dodiw.A5 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.Dodiw.A5 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Backdoor.Dodiw.A5?



File Info:

name: 6E14D9BA6B089DC45713.mlw
path: /opt/CAPEv2/storage/binaries/2a0b90a93b6cd6a10eee76ad557f2f0eddb56f2c4b294896af858f3a9dc0f004
crc32: E6F6C985
md5: 6e14d9ba6b089dc457135f6739ee3906
sha1: e5b85459bb9afb694caaca46c0f6db8776e18710
sha256: 2a0b90a93b6cd6a10eee76ad557f2f0eddb56f2c4b294896af858f3a9dc0f004
sha512: 4bd3164c1523946e4fd581ae496583b1d5efabc84731e5e110fa5612df753a73a89e863ad0af0ee395da781a4d4c52b002e6cfa95317693fdf723f87fb5054db
ssdeep: 6144:jL1ncfWwN0oc35jeRh8Xqfy/Ka1OHAH0tMrKCTEABG+Z9d3cQT/9nR4Ioy19:jLdcfxaeM6fy/KaVUtgKkTZ73coNRJ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19674231249EA2557D9E799FC4905F9C85827042F14DDCB69EB807EFB708BAB049C0EF8
sha3_384: 553620809a468680f7ac2027c2362f1093b7df1dc187d4782b7456887f2b57384471438658332dca1767042a5fccaab2
ep_bytes: 60be00f046008dbe0020f9ff57eb0b90
timestamp: 2015-07-31 21:07:17


Version Info:

0: [No Data]

Backdoor.Dodiw.A5 also known as:

BkavW32.AIDetectMalware
CynetMalicious (score: 100)
CAT-QuickHealBackdoor.Dodiw.A5
ALYacGen:Variant.Downloader.212
MalwarebytesGeneric.Malware.AI.DDS
ZillyaTrojan.Agent.Win32.561262
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
Cybereasonmalicious.a6b089
VirITTrojan.Win32.Generic.CBKR
CyrenW32/Dodiw.A.gen!Eldorado
SymantecSMG.Heur!gen
Elasticmalicious (moderate confidence)
ESET-NOD32Win32/Spy.Agent.OSD
APEXMalicious
ClamAVWin.Malware.Zard-9839186-0
KasperskyHEUR:Trojan-Spy.Win32.Larby.gen
BitDefenderGen:Variant.Downloader.212
NANO-AntivirusTrojan.Win32.Dodiw.duviir
ViRobotTrojan.Win32.Agent.794624.L[UPX]
MicroWorld-eScanGen:Variant.Downloader.212
AvastWin32:Evo-gen [Trj]
RisingStealer.Browser!1.DDB0 (CLASSIC)
TACHYONTrojan/W32.Fsysna.750592
EmsisoftGen:Variant.Downloader.212 (B)
F-SecureHeuristic.HEUR/AGEN.1314756
DrWebTrojan.WebPick.9115
VIPREGen:Variant.Downloader.212
TrendMicroBKDR_DODIW.SM
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.6e14d9ba6b089dc4
SophosTroj/Agent-BAGZ
IkarusBackdoor.Win32.Dodiw
JiangminTrojan/Generic.bhtfw
WebrootW32.Malware.Gen
AviraHEUR/AGEN.1314756
Antiy-AVLTrojan/Win32.SGeneric
MicrosoftTrojan:Win32/Vindor!pz
XcitiumTrojWare.Win32.TrojanDropper.Sysn.CH@5y3z3q
ArcabitTrojan.Downloader.212
SUPERAntiSpywareTrojan.Agent/Gen-Malagent
ZoneAlarmHEUR:Trojan-Spy.Win32.Larby.gen
GDataGen:Variant.Downloader.212
GoogleDetected
AhnLab-V3Backdoor/Win32.Dodiw.R168942
McAfeeGenericRXAA-AA!6E14D9BA6B08
MAXmalware (ai score=88)
VBA32Trojan.Fsysna
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallBKDR_DODIW.SM
TencentMalware.Win32.Gencirc.10bd9b73
YandexTrojan.GenAsa!zasX5vru+uo
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.OSD!tr
BitDefenderThetaGen:NN.ZexaF.36662.wmGfaW!qCJmi
AVGWin32:Evo-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Backdoor.Dodiw.A5?

Backdoor.Dodiw.A5 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment