Categories: Backdoor

Backdoor.Pigeon removal guide

The Backdoor.Pigeon is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Backdoor.Pigeon virus can do?

Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Backdoor.Pigeon?


File Info:
crc32: B9001CDFmd5: b9694661d5972e7da6cd8d81ba46fa40name: B9694661D5972E7DA6CD8D81BA46FA40.mlwsha1: a961689547adf5f6ae229b782aeae8696932a48asha256: dd609bae69f68cbf944f9fb1b8b1585ab53a3b18405533369147ade9fe1d0583sha512: adf652165bb73cd6adb4e29fcc3114970ba92215587c0808487ca8161dabb90d60315ff0058a62583d3a353c15027c13b3ff861fa47a6ea480ad2b38b8f241bdssdeep: 6144:4V7VaHSusmhoHhCDiNN7M7SCnqMreKSnEhlWBkK1ZVCax2TfRpoSU/:4VBayusm+HhUEML5reKSEh+dvVtx2TJetype: MS-DOS executable
Version Info:
LegalCopyright: Microsoft Corporation. All rights reserved.InternalName: CSRSS.ExeFileVersion: 5.1.2600.2180CompanyName: Microsoft Windows Operating SystemLegalTrademarks: Comments: ProductName: Microsoft Windows Operating SystemProductVersion: 5.1.2600.2180FileDescription: Client Server Runtime ProcessOriginalFilename: CSRSS.ExeTranslation: 0x0809 0x04e4

Backdoor.Pigeon also known as:

K7AntiVirus	Trojan ( 005376ae1 )
Lionic	Worm.Win32.Fujack.kYPi
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
ALYac	Trojan.Agent.AIYL
Cylance	Unsafe
Zillya	Backdoor.Hupigon.Win32.1291
Sangfor	Riskware.Win32.Agent.ky
CrowdStrike	win/malicious_confidence_90% (W)
Alibaba	Backdoor:Win32/Hupigon.7b25ee31
K7GW	Trojan ( 005376ae1 )
Cybereason	malicious.1d5972
Cyren	W32/Backdoor.BUYN-9121
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Hupigon
Zoner	Probably Heur.ExeHeaderH
APEX	Malicious
Avast	Win32:Trojan-gen
ClamAV	Win.Trojan.Hupigon-19686
Kaspersky	UDS:DangerousObject.Multi.Generic
BitDefender	Trojan.Agent.AIYL
NANO-Antivirus	Trojan.Win32.Hupigon.jggf
MicroWorld-eScan	Trojan.Agent.AIYL
Tencent	Win32.Trojan.Inject.Auto
Ad-Aware	Trojan.Agent.AIYL
Sophos	Mal/Generic-S
Comodo	TrojWare.Win32.MalPack.~ULB@1pzy6g
BitDefenderTheta	AI:Packer.6B6A65A91C
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Cryp_Xin1
McAfee-GW-Edition	Generic.dx!B9694661D597
FireEye	Generic.mg.b9694661d5972e7d
Emsisoft	Trojan.Agent.AIYL (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Backdoor/Huigezi.aig
Webroot	W32.Bifrose.Gen
Avira	TR/Crypt.FKM.Gen
eGambit	Unsafe.AI_Score_100%
Antiy-AVL	Trojan/Generic.ASMalwS.9A857E
Kingsoft	Win32.Hack.Undef.(kcloud)
Microsoft	Backdoor:Win32/Hupigon.DZ
GData	Trojan.Agent.AIYL
TACHYON	Backdoor/W32.Hupigon.292875
AhnLab-V3	Backdoor/Win32.Hupigon.C80591
Acronis	suspicious
McAfee	Generic.dx!B9694661D597
MAX	malware (ai score=100)
VBA32	Backdoor.Pigeon
Panda	Generic Malware
TrendMicro-HouseCall	Cryp_Xin1
Rising	Packer.Win32.Agent.j (CLASSIC)
Yandex	Backdoor.Hupigon.FENB
Ikarus	Trojan.Buzus.iij
MaxSecure	Trojan.Malware.1579483.susgen
Fortinet	W32/CoinMiner.BELF!tr
AVG	Win32:Trojan-gen
Paloalto	generic.ml