Backdoor.RAT.Parallax malicious file

Malware Removal

The Backdoor.RAT.Parallax is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Backdoor.RAT.Parallax virus can do?

  • Executable code extraction
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Creates or sets a registry key to a long series of bytes, possibly to store a binary or malware config
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Network activity detected but not expressed in API logs
  • Creates a copy of itself
  • Anomalous binary characteristics

How to determine Backdoor.RAT.Parallax?


File Info:

crc32: 8DC5FD97
md5: 823be1cd7defa02113ad36530c55b278
name: 823BE1CD7DEFA02113AD36530C55B278.mlw
sha1: e55ef9e7834fc9371e02fa4bdeb699d1f8819ead
sha256: e6e9b8fe2bb57d5dc22953b423d6340ef3adf9ebef4852a842c9c87e9d3fead7
sha512: 997b18aaa326ebaa0de683bd590f704abdbb8d1d8f24cef263723f3211b6f464b60b2266cb3767fa6852870fc4e54611eb1a646c28b24466d3e6ef7ab6be80c5
ssdeep: 49152:CxZmYC4csZ7gzH3h42+pt1hwOHUqB8ZrkWtKy1lNHnFeX2y4ssKbs8wSIlTAY:CbmYCwOTy2+L1iO0GlWtKy1lNHnFeX2V
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright: Copyright xa9 1999-2017 Famatech Corp. and its licensors. All rights reserved.
InternalName: Radmin
FileVersion: 3, 5, 2, 0
CompanyName: Famatech Corp.
PrivateBuild:
LegalTrademarks: Radmin, Remote Administrator
Comments: Radmin Viewer
ProductName: Radmin Viewer
SpecialBuild:
ProductVersion: 3, 5, 2, 0
FileDescription: Radmin Viewer
OriginalFilename: Radmin.exe
Translation: 0x0409 0x04b0

Backdoor.RAT.Parallax also known as:

MicroWorld-eScanGen:Variant.Razy.605759
McAfeeArtemis!823BE1CD7DEF
CylanceUnsafe
K7AntiVirusTrojan ( 00577ff51 )
BitDefenderGen:Variant.Razy.605759
K7GWTrojan ( 00577ff51 )
Cybereasonmalicious.d7defa
CyrenW32/Trojan.WENR-6623
SymantecTrojan.Gen.MBT
AvastWin32:DangerousSig [Trj]
KasperskyUDS:DangerousObject.Multi.Generic
AlibabaTrojan:Win32/GenCBL.eab93604
RisingTrojan.GenCBL!8.12138 (CLOUD)
Ad-AwareGen:Variant.Razy.605759
EmsisoftMalCert.A (A)
ComodoMalware@#32av8o4mfnv9h
F-SecureTrojan.TR/AD.ParallaxRat.cupjv
DrWebBackDoor.Rat.324
TrendMicroTROJ_FRS.VSNTBI21
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Variant.Razy.605759
SophosMal/Generic-S
IkarusTrojan.Win32.Gencbl
AviraTR/AD.ParallaxRat.cupjv
MAXmalware (ai score=84)
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Ymacco.AAE6
ArcabitTrojan.Razy.D93E3F
ZoneAlarmUDS:DangerousObject.Multi.Generic
GDataGen:Variant.Razy.605759
CynetMalicious (score: 85)
AhnLab-V3Malware/Gen.Reputation.C4340367
ALYacBackdoor.RAT.Parallax
MalwarebytesGeneric.Malware/Suspicious
ESET-NOD32a variant of Win32/GenCBL.YQ
TrendMicro-HouseCallTROJ_FRS.VSNTBI21
FortinetW32/GenCBL.YQ!tr
AVGWin32:DangerousSig [Trj]
Paloaltogeneric.ml
Qihoo-360Win32/Trojan.Generic.HgIASPMA

How to remove Backdoor.RAT.Parallax?

Backdoor.RAT.Parallax removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment