Backdoor

Backdoor:Win32/Nuwar.A removal tips

Malware Removal

The Backdoor:Win32/Nuwar.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor:Win32/Nuwar.A virus can do?

  • Authenticode signature is invalid

How to determine Backdoor:Win32/Nuwar.A?



File Info:

name: B783F8CA0F51D90A2A26.mlw
path: /opt/CAPEv2/storage/binaries/588cb944f27b8dfdf5dc1b89ea2c07a79eea035c57ce02bf367c4ad088dcaee0
crc32: BB7A7869
md5: b783f8ca0f51d90a2a262231118e54b7
sha1: 6406c2242a96dc28ddcef52963c33820a435346f
sha256: 588cb944f27b8dfdf5dc1b89ea2c07a79eea035c57ce02bf367c4ad088dcaee0
sha512: 4e55566480c133464026ed1a6ac34c96d37f130be5fb06cb79dd70496631a4172850c7280928b56305600a9d89f6e0177ea6b3fceb2eaaf8cf4a51d3c129511d
ssdeep: 3072:Wl8oqqj/tiR1YOWDYsy5L/rNDmGTVo0qdTBfVly+KWEvzYO:WlC6iPdZmGTudTBtly+KWEvN
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T121D3AE72358140F6C5F025B21ACD7A3C9BFBB671037589836B482D945D55B8BE32A3CB
sha3_384: 6a720e989bea10cdfa6f5520bff68e840163069e0a967f99358f3d8d546ae77b7f475ecd0d562e3d6c32802f359cf807
ep_bytes: 558becb828250000e89606000053bb04
timestamp: 2007-12-25 22:10:39


Version Info:

0: [No Data]

Backdoor:Win32/Nuwar.A also known as:

BkavW32.AIDetectMalware
LionicWorm.Win32.Zhelatin.lv4C
CynetMalicious (score: 100)
FireEyeGeneric.mg.b783f8ca0f51d90a
SkyhighW32/Nuwar@MM.n
McAfeeW32/Nuwar@MM.n
Cylanceunsafe
ZillyaWorm.Zhelatin.Win32.2732
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 004ca7b41 )
AlibabaWorm:Win32/Zhelatin.1e5e5213
K7GWTrojan ( 004ca7b41 )
Cybereasonmalicious.a0f51d
BitDefenderThetaAI:Packer.414EBC8E1E
VirITWorm.Win32.Nuwar.N
SymantecTrojan.Peacomm
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Nuwar
APEXMalicious
ClamAVWin.Trojan.Zhelatin-2
KasperskyEmail-Worm.Win32.Zhelatin.pk
BitDefenderGen:Variant.Razy.829143
NANO-AntivirusTrojan.Win32.Zhelatin.mqtc
MicroWorld-eScanGen:Variant.Razy.829143
AvastWin32:Zhelatin-ASX [Wrm]
TencentMalware.Win32.Gencirc.10b92f5c
EmsisoftGen:Variant.Razy.829143 (B)
F-SecureWorm.WORM/Zhelatin.Gen
DrWebTrojan.Spambot.2386
VIPREGen:Variant.Razy.829143
TrendMicroTROJ_NUWAR.UP
Trapminemalicious.moderate.ml.score
SophosMal/Generic-R
IkarusVirus.Win32.Zhelatin
JiangminBackdoor/Agent.aedr
WebrootW32.Worm.A
GoogleDetected
AviraWORM/Zhelatin.Gen
Antiy-AVLWorm[Email]/Win32.Zhelatin
KingsoftWin32.Troj.Undef.a
MicrosoftBackdoor:Win32/Nuwar.A
XcitiumEmailWorm.Win32.Zhelatin.pk0@1ej35d
ArcabitTrojan.Razy.DCA6D7
ViRobotI-Worm.Win32.Zhelatin.142336
ZoneAlarmEmail-Worm.Win32.Zhelatin.pk
GDataGen:Variant.Razy.829143
VaristW32/StormWorm.A.gen!GSA
AhnLab-V3Worm/Win32.Zhelatin.C35797
VBA32BScope.Trojan.Zhelatin.con
ALYacGen:Variant.Razy.829143
MAXmalware (ai score=100)
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/Spammer.AFG
TrendMicro-HouseCallTROJ_NUWAR.UP
RisingTrojan.Win32.Undef.apk (CLASSIC)
YandexTrojan.GenAsa!HzMRtlJQ1QY
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.1326630.susgen
FortinetW32/Tibs.G@mm
AVGWin32:Zhelatin-ASX [Wrm]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (W)
alibabacloudWorm[email]:Win/Nuwar

How to remove Backdoor:Win32/Nuwar.A?

Backdoor:Win32/Nuwar.A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment