Backdoor

Backdoor.Win32.Agent.myubwk removal instruction

Malware Removal

The Backdoor.Win32.Agent.myubwk is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor.Win32.Agent.myubwk virus can do?

  • Possible date expiration check, exits too soon after checking local time
  • Reads data out of its own binary image
  • A process created a hidden window
  • Drops a binary and executes it
  • Unconventionial language used in binary resources: Russian
  • Uses Windows utilities for basic functionality
  • Anomalous binary characteristics

How to determine Backdoor.Win32.Agent.myubwk?



File Info:

crc32: FDFA5A25
md5: d18dc9cf860133016c0c244b9ad579bd
name: D18DC9CF860133016C0C244B9AD579BD.mlw
sha1: 1fc0e27cdab3f5ff40cac4448f4023c0693ec071
sha256: 0329f707c1e908925f23bc015b422526620f308142a2e75df56257ac3aec4c3a
sha512: 77d9135160dc9e35c3112e8036e0f39778235c3630805001b1230090fba47104ed306e30b4633dcfcd4f0440d731ba5c4a61906ec1140f78bd0b2e3241e91f1f
ssdeep: 49152:cTu+qeLeCJ1rHwHaBwoOfPYDp4Ou9RxhEkplC2wZ:cTuHCJ1rQHMhOfPYDru9XhsNZ
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2005-2010 Oleg N. Scherbakov
InternalName: 7ZSfxMod
FileVersion: 1.4.0.1795
CompanyName: Oleg N. Scherbakov
PrivateBuild: June 27, 2010
ProductName: 7-Zip SFX
ProductVersion: 1.4.0.1795
FileDescription: 7z Setup SFX (x86)
OriginalFilename: 7ZSfxMod_x86.exe
Translation: 0x0000 0x04b0

Backdoor.Win32.Agent.myubwk also known as:

ALYacTrojan.GenericKD.37080211
SangforRiskware.Win32.Agent.ky
AlibabaBackdoor:Win32/7Drop.a09ec259
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:7Drop-J [Drp]
ClamAVWin.Dropper.Alien-9784822-0
KasperskyBackdoor.Win32.Agent.myubwk
BitDefenderTrojan.GenericKD.37080211
MicroWorld-eScanTrojan.GenericKD.37080211
Ad-AwareTrojan.GenericKD.37080211
McAfee-GW-EditionBehavesLike.Win32.Dropper.tc
FireEyeTrojan.GenericKD.37080211
EmsisoftTrojan.GenericKD.37080211 (B)
JiangminTrojanDownloader.CodecPack.cln
WebrootW32.Trojan.Gen
Antiy-AVLTrojan/Generic.ASMalwS.68F5E
MicrosoftTrojan:Win32/Wacatac.B!ml
AegisLabTrojan.Multi.Generic.4!c
ZoneAlarmBackdoor.Win32.Agent.myubwk
GDataTrojan.GenericKD.37080211
McAfeeArtemis!D18DC9CF8601
MAXmalware (ai score=99)
MalwarebytesTrojan.Dropper.Generic
IkarusTrojan.Win32.Chifrax
FortinetW32/PossibleThreat
AVGWin32:7Drop-J [Drp]
Paloaltogeneric.ml

How to remove Backdoor.Win32.Agent.myubwk?

Backdoor.Win32.Agent.myubwk removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment