Backdoor

Backdoor.Koutodoor information

Malware Removal

The Backdoor.Koutodoor is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.Koutodoor virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine Backdoor.Koutodoor?



File Info:

crc32: E7367D6B
md5: 06de746f6c426647ab1471463ae04b8a
name: 06DE746F6C426647AB1471463AE04B8A.mlw
sha1: 3333a4d791b2cb8af04dd747254d506b9da90bd2
sha256: ba877ac9e233ab05ad0a9c4aaf619211737054ae6e936c2eca0f139e11f7caee
sha512: 3fc710995fa58be77b2b699193a139c1dd20f1902c47f0d01536f7d648464cde1c0df392dc4de3e30fa66e7cf6182d7d647ba029151699e52a80902acb6f88c7
ssdeep: 1536:ZP9As+1KoKJu6+iwP3kKZIjH4ZX82dKTAt28hXMfV5zhI8nT5d9NUk:4FKoKJuUTKGjHQ82G8BMfVVhHd/
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright 2010
ProductVersion: 1, 0, 0, 0
FileDescription: 
FileVersion: 1, 0, 0, 0
CompanyName: 
Translation: 0x0804 0x04b0

Backdoor.Koutodoor also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Ransom.Cerber.1
FireEyeGeneric.mg.06de746f6c426647
McAfeeKoutodoor.gen.g
CylanceUnsafe
VIPRETrojan.Win32.Koutodoor.e (v)
AegisLabTrojan.Win32.Generic.lwNl
SangforRansom.Win32.Cerber_9.se
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderTrojan.Ransom.Cerber.1
K7GWTrojan ( 0002762d1 )
K7AntiVirusTrojan ( 0002762d1 )
BaiduWin32.Rootkit.Koutodoor.a
CyrenW32/Koutodoor.A.gen!Eldorado
SymantecTrojan.Koutodoor!gen
TotalDefenseWin32/Koutodoor.D!generic
APEXMalicious
AvastWin32:Caxnet [Trj]
KasperskyHEUR:Trojan.Win32.Generic
AlibabaTrojan:Win32/Koutodoor.ffbc9f89
NANO-AntivirusTrojan.Win32.MLW.evaszt
ViRobotBackdoor.Win32.Koutodoor.Gen.B
RisingTrojan.Fedwj!1.98EA (CLOUD)
Ad-AwareTrojan.Ransom.Cerber.1
SophosML/PE-A + Mal/Koutodoor-A
ComodoTrojWare.Win32.Zybr.A@1gtnwn
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.MulDrop4.57022
ZillyaBackdoor.Koutodoor.Win32.3362
TrendMicroBKDR_KTDOOR.SMIC
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
EmsisoftTrojan.Ransom.Cerber.1 (B)
IkarusTrojan.Win32.Koutodoor
JiangminTrojan/JunkCode.Gen
WebrootW32.Trojan.Koutodoor.Gen
AviraTR/Dropper.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan[Backdoor]/Win32.Koutodoor
MicrosoftTrojan:Win32/Koutodoor.E
ArcabitTrojan.Ransom.Cerber.1
SUPERAntiSpywareTrojan.Agent/Gen-Koutodoor
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.Ransom.Cerber.1
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/Koutodoor12.Gen
Acronissuspicious
BitDefenderThetaAI:Packer.D582C3B721
ALYacTrojan.Ransom.Cerber.1
VBA32Backdoor.Koutodoor
MalwarebytesMachineLearning/Anomalous.96%
PandaBck/Koutodoor.E
ESET-NOD32a variant of Win32/Koutodoor.HL
TrendMicro-HouseCallBKDR_KTDOOR.SMIC
TencentTrojan.Win32.WNDABC.a
YandexTrojan.GenAsa!HwGm/pypIn8
SentinelOneStatic AI – Malicious PE
FortinetW32/Koutodoor.D!tr.bdr
AVGWin32:Caxnet [Trj]
Cybereasonmalicious.f6c426
Qihoo-360Trojan.Win32.Koutodoor.AS

How to remove Backdoor.Koutodoor?

Backdoor.Koutodoor removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment