The Backdoor.MSIL.DCRat.aog is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Backdoor.MSIL.DCRat.aog virus can do?
File Info:
name: 8D4BAC59FF120555F796.mlwpath: /opt/CAPEv2/storage/binaries/e8d64407b99b6ffbf175f7b8bc1b847535b5764205bf650d067b431868f595b8crc32: 5660BC7Fmd5: 8d4bac59ff120555f796dac53c08da80sha1: 85310eae65c1e5e89dc766d771f292716122f5e5sha256: e8d64407b99b6ffbf175f7b8bc1b847535b5764205bf650d067b431868f595b8sha512: 7e8508b63b7c9ea42d8e31474bdc5ef2f7f9200e5ddd2cfc3039fc8b8f3d80ea38d9855dbb12a5137e2eb3a49a0fdfdca02e982b47edd3b80ae317c2310ae379ssdeep: 196608:Xy3tG7+Qx+jQlCPVJhZax+/pKTevYIg55i7Z4r9oR:Xy38llsq+4KAI0iV4r9type: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T1A5B633E8FC96F08AE689EB324DB58F6259C1939B512D33D300919CF763D22529D1C4AFsha3_384: 5831135675638ca3be90f7d6638537d309e72d405362520ad51d655e6959563008581232ab4a36825f623816db8e0c09ep_bytes: e8bd97a0006a00ff15a4c0e000c30b1ftimestamp: 2022-10-26 20:13:46Version Info:
FileDescription: ExodusProductName: ExodusFileVersion: 22.6.17.0ProductVersion: 22.6.17LegalCopyright: Copyright (c) 2015-2022 Exodus Movement, Inc.OriginalFilename: Exodus.exeTranslation: 0x0409 0x0000
Elastic | malicious (high confidence) |
MicroWorld-eScan | Gen:Variant.ExNuma.1 |
McAfee | GenericRXQJ-SK!8D4BAC59FF12 |
Cylance | Unsafe |
VIPRE | Gen:Variant.ExNuma.1 |
Sangfor | Suspicious.Win32.Save.a |
CrowdStrike | win/malicious_confidence_100% (D) |
K7GW | Trojan ( 0058ee541 ) |
K7AntiVirus | Trojan ( 0058ee541 ) |
Cyren | W32/ExNuma.A.gen!Eldorado |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | a variant of Win32/Kryptik.HNPY |
Kaspersky | Backdoor.MSIL.DCRat.aog |
BitDefender | Gen:Variant.ExNuma.1 |
Avast | Win32:Evo-gen [Trj] |
Tencent | Trojan.Win32.Kryptik.zad |
Ad-Aware | Gen:Variant.ExNuma.1 |
Emsisoft | Gen:Variant.ExNuma.1 (B) |
McAfee-GW-Edition | BehavesLike.Win32.HLLP.vh |
FireEye | Generic.mg.8d4bac59ff120555 |
Sophos | Generic ML PUA (PUA) |
Ikarus | Trojan.Win32.Krypt |
GData | Win32.Trojan.QuasarRAT.B |
Detected | |
Avira | HEUR/AGEN.1215601 |
MAX | malware (ai score=87) |
Arcabit | Trojan.ExNuma.1 |
Microsoft | VirTool:Win32/Pucrpt.A!MTB |
Cynet | Malicious (score: 100) |
AhnLab-V3 | Trojan/Win.Generic.R442274 |
Acronis | suspicious |
VBA32 | BScope.TrojanSpy.Stealer |
ALYac | Gen:Variant.ExNuma.1 |
Malwarebytes | Trojan.Dropper |
Rising | Backdoor.Bladabindi!8.B1F (TFE:2:yokiUYXoRBE) |
Fortinet | W32/Kryptik.HNPY!tr |
BitDefenderTheta | Gen:NN.ZexaF.34754.@p0@aqsixjn |
AVG | Win32:Evo-gen [Trj] |
The Win32/Downloader.Agent.CP potentially unwanted is considered dangerous by lots of security experts. When this infection…
The Trojan:MSIL/Zusy.PTHT!MTB is considered dangerous by lots of security experts. When this infection is active,…
The Trojan.Win32.Agent.xbnket is considered dangerous by lots of security experts. When this infection is active,…
The Downloader.Win32.Gamini.pjd is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.3666175063 is considered dangerous by lots of security experts. When this infection is active,…
The Trojan:Win32/LummaStealer.CADV!MTB is considered dangerous by lots of security experts. When this infection is active,…