Backdoor

What is “Backdoor:Win32/Small.VV”?

Malware Removal

The Backdoor:Win32/Small.VV is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Backdoor:Win32/Small.VV virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Creates a copy of itself
  • Deletes executed files from disk

How to determine Backdoor:Win32/Small.VV?



File Info:

name: 361885008AFE0C9E5B2F.mlw
path: /opt/CAPEv2/storage/binaries/2c2d96c196b8611382a2fd50ed00b94a24dae8607f3b367f273d495c5c6eac2c
crc32: B4FEA194
md5: 361885008afe0c9e5b2fef1c774ca70c
sha1: 69240acb9a0398c6ffa02d40b2db29ed013c24e7
sha256: 2c2d96c196b8611382a2fd50ed00b94a24dae8607f3b367f273d495c5c6eac2c
sha512: 87f123a18e1059c9ebca56b4b14c7aafa675a7cd56c6391bccba9f7c7f0d4105ef6a4ae14fa6b47cd5290bc41cf2113565b25aad141bbd334c2d2868c4afcbcf
ssdeep: 192:9KSHWzDdcre8BwuNA9rr+yyA3V0/CaDaU/Z6cHpfQ:9BHWzDdcreKS9rrByAqaaBwcJ4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10742A51B7519B0FAD040CB3131454A8199BD15392A9D7D08FF291E7068F19FBAFE111E
sha3_384: aea9733894bbd051e3b5ece64a388ec14e1d828a0de72830e10b3875f17b4b6102233c2f73f6915554d353de5f38e9e2
ep_bytes: 6800020000681c3b40006a00e8d31b00
timestamp: 2005-02-07 22:02:47


Version Info:

0: [No Data]

Backdoor:Win32/Small.VV also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Agent.kYRk
tehtrisGeneric.Malware
MicroWorld-eScanGen:Trojan.FirewallBypass.amW@ae43MPh
FireEyeGeneric.mg.361885008afe0c9e
ALYacGen:Trojan.FirewallBypass.amW@ae43MPh
CylanceUnsafe
VIPREGen:Trojan.FirewallBypass.amW@ae43MPh
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0055e4041 )
AlibabaBackdoor:Win32/Bdoor.770b5d5f
K7GWTrojan ( 0055e4041 )
Cybereasonmalicious.08afe0
VirITBackdoor.Win32.Small.DX
CyrenW32/Zbot.G.gen!Eldorado
SymantecBackdoor.Trojan
Elasticmalicious (high confidence)
ESET-NOD32Win32/Small.CO
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyBackdoor.Win32.Small.co
BitDefenderGen:Trojan.FirewallBypass.amW@ae43MPh
NANO-AntivirusTrojan.Win32.Small.hdrv
AvastWin32:Small-AXO [Trj]
TencentWin32.Backdoor.Small.Lhnc
Ad-AwareGen:Trojan.FirewallBypass.amW@ae43MPh
TACHYONBackdoor/W32.Small.12288.AJ
EmsisoftGen:Trojan.FirewallBypass.amW@ae43MPh (B)
ComodoBackdoor.Win32.Small.CO@1eyt
DrWebBackDoor.IRC.SmallPuppy
ZillyaBackdoor.Small.Win32.4257
TrendMicroTROJ_GEN.R27E1I5
McAfee-GW-EditionBehavesLike.Win32.Generic.lt
Trapminemalicious.high.ml.score
SophosML/PE-A + Troj/Bdoor-ER
SentinelOneStatic AI – Malicious PE
GDataGen:Trojan.FirewallBypass.amW@ae43MPh
JiangminBackdoor/Small.dvu
WebrootW32.Malware.Gen
AviraBDS/Small.CO
Antiy-AVLTrojan/Generic.ASMalwS.183
KingsoftWin32.Hack.Small..(kcloud)
ArcabitTrojan.FirewallBypass.EC301A
ViRobotBackdoor.Win32.A.Small.12699
MicrosoftBackdoor:Win32/Small.VV
GoogleDetected
Acronissuspicious
McAfeeBackDoor-COQ
MAXmalware (ai score=100)
VBA32BScope.Trojan.Proxy
MalwarebytesMalware.Heuristic.1003
TrendMicro-HouseCallTROJ_GEN.R27E1I5
RisingBackdoor.Small.ct (CLASSIC)
YandexBackdoor.Small!K5D1WbQ43OI
IkarusTrojan.Win32.Small
MaxSecureTrojan.Malware.1675781.susgen
FortinetW32/BDoor.COQ!tr.bdr
BitDefenderThetaAI:Packer.4728A9191D
AVGWin32:Small-AXO [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Backdoor:Win32/Small.VV?

Backdoor:Win32/Small.VV removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment