Backdoor

Backdoor.Generic.523132 information

Malware Removal

The Backdoor.Generic.523132 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.Generic.523132 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Executes the printer spooler process
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Attempts to modify Explorer settings to prevent file extensions from being displayed
  • Attempts to modify Explorer settings to prevent hidden files from being displayed

How to determine Backdoor.Generic.523132?



File Info:

name: 82C6A11321B211F77110.mlw
path: /opt/CAPEv2/storage/binaries/c467a0b654497b8b9d15d279d2c1cbb033c5b2e81ef96b82c84dd95c853a1043
crc32: 059CC4D3
md5: 82c6a11321b211f77110ecd5a8199e6d
sha1: 107f8024cef8c68b78d0050c719561700b8dad12
sha256: c467a0b654497b8b9d15d279d2c1cbb033c5b2e81ef96b82c84dd95c853a1043
sha512: 6f582203128d60d9f5d7f80afa92dd50d89761bf14d833ed965173142c23e9e4a1f8b0d274cce06c49f8f057c65bcca66e14d22047e55e85648538b590f8429c
ssdeep: 1536:Za3+ddygX7y9v7Z+NoykJHBOAFRfBjG3EdoIb:w8dfX7y9DZ+N7eB+hIb
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18E834B1BB7CC5857EAA7273A65B785F89633785E6B438B476054333A1C32F022D27643
sha3_384: bc479ea039f009f78d53cd330f51323d2b014a3173cf401af2864c8b1143c098444d41701f73412f42630a33088ef2d2
ep_bytes: 6894314000e8eeffffff000000000000
timestamp: 2003-08-06 18:34:23


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Office Word
FileVersion: 11.0.5604
InternalName: WinWord
LegalCopyright: Copyright © 1983-2003 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: WinWord.exe
ProductName: Microsoft Office 2003
ProductVersion: 11.0.5604
Translation: 0x0000 0x04e4

Backdoor.Generic.523132 also known as:

LionicTrojan.Win32.Swisyn.kZb9
Elasticmalicious (high confidence)
MicroWorld-eScanBackdoor.Generic.523132
FireEyeGeneric.mg.82c6a11321b211f7
CAT-QuickHealW32.Rungbu.A5
McAfeeW32/Rungbu
CylanceUnsafe
ZillyaVirus.VB.Win32.8
SangforSuspicious.Win32.Save.vb
K7AntiVirusP2PWorm ( 004cb5d91 )
BitDefenderBackdoor.Generic.523132
K7GWP2PWorm ( 004cb5d91 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaAI:Packer.847AC4291C
VirITTrojan.Win32.VB.DJD
CyrenW32/Rungbu.C.gen!Eldorado
SymantecW32.Rungbu
tehtrisGeneric.Malware
ESET-NOD32Win32/VB.NHV
BaiduWin32.Trojan.Begolu.a
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Trojan.VBGeneric-6735873-0
KasperskyVirus.Win32.VB.cc
AlibabaWorm:Win32/vobfus.1030
NANO-AntivirusVirus.Win32.VB.fggxtd
CynetMalicious (score: 100)
RisingTrojan.VB.wvl (CLASSIC)
Ad-AwareBackdoor.Generic.523132
TACHYONBackdoor/W32.VB-Agent.88064
SophosML/PE-A + W32/VB-CTQ
ComodoWorm.Win32.VB.NHV@su5
DrWebWin32.HLLW.Generic.194
VIPREBackdoor.Generic.523132
TrendMicroTROJ_VB.SMJ
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.mm
Trapminemalicious.high.ml.score
EmsisoftBackdoor.Generic.523132 (B)
IkarusWorm.Win32.VB
JiangminVirus.VB.da
AviraTR/Agent.VB.AF
Antiy-AVLTrojan/Generic.ASBOL.766F
MicrosoftVirus:Win32/VB.CC
SUPERAntiSpywareWorm.Agent/Gen-Silly
GDataWin32.Virus.Rungflu.A
GoogleDetected
AhnLab-V3Worm/Win32.VB.R2327
ALYacBackdoor.Generic.523132
MAXmalware (ai score=88)
VBA32Win32.VB
MalwarebytesMalware.AI.1851529171
PandaW32/Rungbu.D.worm
TrendMicro-HouseCallTROJ_VB.SMJ
TencentVirus.Win32.Vb.za
SentinelOneStatic AI – Malicious PE
MaxSecureVirus.W32.VB.CC
FortinetW32/VB.CC!worm
AVGWin32:VB-CVP
Cybereasonmalicious.321b21
AvastWin32:VB-CVP

How to remove Backdoor.Generic.523132?

Backdoor.Generic.523132 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment