Backdoor

Backdoor.PowerShell.Agent removal

Malware Removal

The Backdoor.PowerShell.Agent is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.PowerShell.Agent virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Backdoor.PowerShell.Agent?



File Info:

crc32: DBD11136
md5: dd6abcbd405fa4a36ffd84d41b274d2f
name: DD6ABCBD405FA4A36FFD84D41B274D2F.mlw
sha1: 67d1fcfcc1b57b6dc360c7d0602a039ec8579eef
sha256: a318082ded568592cacb56bfe45751889fe671a8debce875cdbe6763537f6cc5
sha512: 47158d38db5b43ae3c7e42be1380f7533de68b7b9e348fffffe98341b7d751d025bf2e85e39df4eac415914ac942066d29306b5f860eb8c2475534ba00a9cb45
ssdeep: 1536:AQ7ftfkS5g9YOms+gZcQipICdXkNDqLLZX9lItVGL++eIOlnToIfPwefOv:AuFfHgTWmCRkGbKGLeNTBfP3g
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Backdoor.PowerShell.Agent also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan ( 0052419b1 )
Elasticmalicious (high confidence)
ALYacHeur.BZC.PZQ.Boxter.762.2D404150
CylanceUnsafe
SangforTrojan.Win32.Save.a
BitDefenderHeur.BZC.PZQ.Boxter.762.2D404150
K7GWTrojan ( 0052419b1 )
Cybereasonmalicious.d405fa
CyrenW32/SchoolBoy.B.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32PowerShell/Kryptik.H
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Backdoor.PowerShell.Agent.gen
MicroWorld-eScanHeur.BZC.PZQ.Boxter.762.2D404150
Ad-AwareHeur.BZC.PZQ.Boxter.762.2D404150
SophosGeneric ML PUA (PUA)
F-SecureTrojan.TR/B2E.Dropper.Gen
McAfee-GW-EditionBehavesLike.Win32.Ransom.mh
FireEyeGeneric.mg.dd6abcbd405fa4a3
EmsisoftHeur.BZC.PZQ.Boxter.762.2D404150 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/B2E.Dropper.Gen
eGambitUnsafe.AI_Score_90%
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ArcabitHeur.BZC.PZQ.Boxter.762.2D404150
GDataWin32.Trojan.PSE.N1K38E
MAXmalware (ai score=87)
RisingTrojan.Generic@ML.99 (RDML:SRBj2Tykm7qiMlK99DsM5A)
IkarusTrojan.PowerShell.Crypt
MaxSecureTrojan.Malware.300983.susgen

How to remove Backdoor.PowerShell.Agent?

Backdoor.PowerShell.Agent removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment