Trojan

BScope.Trojan.Jimmy removal guide

Malware Removal

The BScope.Trojan.Jimmy is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What BScope.Trojan.Jimmy virus can do?

  • Unconventionial language used in binary resources: Korean
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine BScope.Trojan.Jimmy?



File Info:

name: 417E0418B4AB8522F48B.mlw
path: /opt/CAPEv2/storage/binaries/e7f84f8c78f1fb7a77aa3a96087d66fb9eedc952d8bc94eced356b0c543327ba
crc32: 5B6EDA7C
md5: 417e0418b4ab8522f48b73ae1da1be85
sha1: c6c459d7cac885d8f88361ea2f9643601919c45c
sha256: e7f84f8c78f1fb7a77aa3a96087d66fb9eedc952d8bc94eced356b0c543327ba
sha512: a94a09d92cfd6c83d9ba28f76189368c4dbcd79be18113e83df0515e4163b363d7626846816b8e0e263baf18bf58742656419c29612a6151848cb117a230eb19
ssdeep: 49152:w7PGeYJ5oG1E67QBPwqlK5BDbR/QM6ZOLCAlw2SFDHqJ5FvNgt73ap:yPGQuR55N/QM6ZOLbl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D4F59E20B202C136E9A310B2D9BD7E6F956DDD10076855C3E3C8296EDDB4AE33A3355B
sha3_384: 9c106259eebe33408c271409145c6e072a29577ad9039705fcc534b2288c5447abbea053f2e77dac5fbc7a0ff6dba616
ep_bytes: e8bf060000e97afeffff8b4df464890d
timestamp: 2021-11-26 12:39:56


Version Info:

CompanyName: Ymir Entertainment
FileDescription: Metin2Client
FileVersion: 1.0.28249.1
InternalName: Metin2Client
LegalCopyright: Copyright (C) 2011
OriginalFilename: Metin2Client.exe
ProductName: Metin2Client
ProductVersion: 1, 0, 0, 1
Translation: 0x0800 0x03b5

BScope.Trojan.Jimmy also known as:

LionicTrojan.Win32.Jimmy.4!c
MicroWorld-eScanTrojan.GenericKD.38136627
FireEyeTrojan.GenericKD.38136627
McAfeeArtemis!417E0418B4AB
ZillyaTrojan.Jimmy.Win32.1026
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyHEUR:Trojan.Win32.Jimmy.gen
BitDefenderTrojan.GenericKD.38136627
AvastWin32:Malware-gen
Ad-AwareTrojan.GenericKD.38136627
McAfee-GW-EditionBehavesLike.Win32.BadFile.wh
EmsisoftTrojan.GenericKD.38136627 (B)
GDataTrojan.GenericKD.38136627
JiangminAdWare.Adposhel.cfpj
MAXmalware (ai score=82)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Trojan/Win.Generic.R454648
VBA32BScope.Trojan.Jimmy
ALYacTrojan.GenericKD.38136627
MalwarebytesMalware.AI.4000211044
TrendMicro-HouseCallTROJ_GEN.R011C0WL621
YandexTrojan.Jimmy!1InTh7RrGdI
FortinetW32/PossibleThreat
AVGWin32:Malware-gen
PandaTrj/GdSda.A

How to remove BScope.Trojan.Jimmy?

BScope.Trojan.Jimmy removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment