Backdoor.Win32.Zegost.mtjnf information

The Backdoor.Win32.Zegost.mtjnf is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Backdoor.Win32.Zegost.mtjnf virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid

How to determine Backdoor.Win32.Zegost.mtjnf?


File Info:
name: D8EA45E4152D2EB2EF65.mlw
path: /opt/CAPEv2/storage/binaries/950814be7053242175e6eb4a3aa1c89ac1db3e4f15ccfe9072dd1372244820ad
crc32: 154874D0
md5: d8ea45e4152d2eb2ef65d6df802ac787
sha1: 51cd2be40e91f0adf3d148466f643eacdd13629e
sha256: 950814be7053242175e6eb4a3aa1c89ac1db3e4f15ccfe9072dd1372244820ad
sha512: fb7bd4c124fe1db2ce3d63b7b26e2f4f60e3438b4263fb1b6fc6daa21e98df56b7d5322f4757383919ed9fcc6aac382284e891e10e5582ce9131d4affc7ecba0
ssdeep: 3072:x/WVRWSq4m9XeKcdOjO5OKUw7V89wmnfLSUkYhk9s42TqbVKuh+DEOXpq0q3/5Zh:ARWSqVwUzRnfLSokPvVADEO8TBAxE
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11C546E30E1BE288EFE95D17D6A3B2EF11D6703D21D2E4AAD225C343D8A7071E3993115
sha3_384: c35d44c15b4cb35e49c9c3cd25c3b19b19679647b71aa65f1eafd63ea4de4fe95c7986482cfe36674e466e39f19dd05b
ep_bytes: 558bec6aff68d071400068503d400064
timestamp: 2003-04-30 19:21:33

Version Info:
Comments: 
CompanyName: Blizzard Entertainment
FileDescription: Frozen Throne
FileVersion: 1, 5, 0, 0
InternalName: Frozen Throne
LegalCopyright: Copyright © 2003
LegalTrademarks: 
OriginalFilename: Frozen Throne.exe
PrivateBuild: 
ProductName: Frozen Throne
ProductVersion: 1, 5, 0, 0
SpecialBuild: 
Translation: 0x0409 0x04b0

Backdoor.Win32.Zegost.mtjnf also known as:

Bkav	W32.AIDetect.malware2
FireEye	Generic.mg.d8ea45e4152d2eb2
McAfee	RDN/Generic BackDoor
Cylance	Unsafe
VirIT	Trojan.Win32.DownLoader4.KTT
Cyren	W32/Virut.X.gen!Eldorado
Elastic	malicious (moderate confidence)
APEX	Malicious
Kaspersky	Backdoor.Win32.Zegost.mtjnf
Comodo	Virus.Win32.Virut.CE@5jedjj
TrendMicro	PE_VIRUX.S-4
McAfee-GW-Edition	RDN/Generic BackDoor
Sophos	Mal/Generic-S
Ikarus	Virtob.Win32
Microsoft	Trojan:Win32/Wacatac.B!ml
TrendMicro-HouseCall	PE_VIRUX.S-4
Tencent	Win32.Backdoor.Zegost.Wura
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/VIRUX_S.4
Cybereason	malicious.4152d2

How to remove Backdoor.Win32.Zegost.mtjnf?

Backdoor.Win32.Zegost.mtjnf removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X