Categories: Backdoor

Backdoor.Generic.523132 information

The Backdoor.Generic.523132 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Backdoor.Generic.523132 virus can do?

Behavioural detection: Executable code extraction – unpacking
Executes the printer spooler process
Authenticode signature is invalid
Anomalous binary characteristics
Attempts to modify Explorer settings to prevent file extensions from being displayed
Attempts to modify Explorer settings to prevent hidden files from being displayed

How to determine Backdoor.Generic.523132?


File Info:
name: 82C6A11321B211F77110.mlwpath: /opt/CAPEv2/storage/binaries/c467a0b654497b8b9d15d279d2c1cbb033c5b2e81ef96b82c84dd95c853a1043crc32: 059CC4D3md5: 82c6a11321b211f77110ecd5a8199e6dsha1: 107f8024cef8c68b78d0050c719561700b8dad12sha256: c467a0b654497b8b9d15d279d2c1cbb033c5b2e81ef96b82c84dd95c853a1043sha512: 6f582203128d60d9f5d7f80afa92dd50d89761bf14d833ed965173142c23e9e4a1f8b0d274cce06c49f8f057c65bcca66e14d22047e55e85648538b590f8429cssdeep: 1536:Za3+ddygX7y9v7Z+NoykJHBOAFRfBjG3EdoIb:w8dfX7y9DZ+N7eB+hIbtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T18E834B1BB7CC5857EAA7273A65B785F89633785E6B438B476054333A1C32F022D27643sha3_384: bc479ea039f009f78d53cd330f51323d2b014a3173cf401af2864c8b1143c098444d41701f73412f42630a33088ef2d2ep_bytes: 6894314000e8eeffffff000000000000timestamp: 2003-08-06 18:34:23
Version Info:
CompanyName: Microsoft CorporationFileDescription: Microsoft Office WordFileVersion: 11.0.5604InternalName: WinWordLegalCopyright: Copyright © 1983-2003 Microsoft Corporation.  All rights reserved.LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.OriginalFilename: WinWord.exeProductName: Microsoft Office 2003ProductVersion: 11.0.5604Translation: 0x0000 0x04e4

Backdoor.Generic.523132 also known as:

Lionic	Trojan.Win32.Swisyn.kZb9
Elastic	malicious (high confidence)
MicroWorld-eScan	Backdoor.Generic.523132
FireEye	Generic.mg.82c6a11321b211f7
CAT-QuickHeal	W32.Rungbu.A5
McAfee	W32/Rungbu
Cylance	Unsafe
Zillya	Virus.VB.Win32.8
Sangfor	Suspicious.Win32.Save.vb
K7AntiVirus	P2PWorm ( 004cb5d91 )
BitDefender	Backdoor.Generic.523132
K7GW	P2PWorm ( 004cb5d91 )
CrowdStrike	win/malicious_confidence_100% (W)
BitDefenderTheta	AI:Packer.847AC4291C
VirIT	Trojan.Win32.VB.DJD
Cyren	W32/Rungbu.C.gen!Eldorado
Symantec	W32.Rungbu
tehtris	Generic.Malware
ESET-NOD32	Win32/VB.NHV
Baidu	Win32.Trojan.Begolu.a
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Trojan.VBGeneric-6735873-0
Kaspersky	Virus.Win32.VB.cc
Alibaba	Worm:Win32/vobfus.1030
NANO-Antivirus	Virus.Win32.VB.fggxtd
Cynet	Malicious (score: 100)
Rising	Trojan.VB.wvl (CLASSIC)
Ad-Aware	Backdoor.Generic.523132
TACHYON	Backdoor/W32.VB-Agent.88064
Sophos	ML/PE-A + W32/VB-CTQ
Comodo	Worm.Win32.VB.NHV@su5
DrWeb	Win32.HLLW.Generic.194
VIPRE	Backdoor.Generic.523132
TrendMicro	TROJ_VB.SMJ
McAfee-GW-Edition	BehavesLike.Win32.PWSZbot.mm
Trapmine	malicious.high.ml.score
Emsisoft	Backdoor.Generic.523132 (B)
Ikarus	Worm.Win32.VB
Jiangmin	Virus.VB.da
Avira	TR/Agent.VB.AF
Antiy-AVL	Trojan/Generic.ASBOL.766F
Microsoft	Virus:Win32/VB.CC
SUPERAntiSpyware	Worm.Agent/Gen-Silly
GData	Win32.Virus.Rungflu.A
Google	Detected
AhnLab-V3	Worm/Win32.VB.R2327
ALYac	Backdoor.Generic.523132
MAX	malware (ai score=88)
VBA32	Win32.VB
Malwarebytes	Malware.AI.1851529171
Panda	W32/Rungbu.D.worm
TrendMicro-HouseCall	TROJ_VB.SMJ
Tencent	Virus.Win32.Vb.za
SentinelOne	Static AI – Malicious PE
MaxSecure	Virus.W32.VB.CC
Fortinet	W32/VB.CC!worm
AVG	Win32:VB-CVP
Cybereason	malicious.321b21
Avast	Win32:VB-CVP