Malware

Bulz.121159 malicious file

Malware Removal

The Bulz.121159 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.121159 virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Bulz.121159?



File Info:

name: F6CF387FD6A21DF202C2.mlw
path: /opt/CAPEv2/storage/binaries/a0eed99d1d64cdda4f9e5078a7cdc55c7b1b3293f673d235d2cb22b4e1cb54f6
crc32: 657BE0F3
md5: f6cf387fd6a21df202c268a796459e0c
sha1: f72f3f3917bdee1d8ed075ae2ff6114242181af0
sha256: a0eed99d1d64cdda4f9e5078a7cdc55c7b1b3293f673d235d2cb22b4e1cb54f6
sha512: 758001cd88a755ce605221cd199b65e10976f0222b6fb7013478450c9552aee3e056c8561647f6fcd74a53570e5715b10be9f878c48ae5860348e3311eb1104b
ssdeep: 49152:68dKlWPLB/P9ml4S/ErNaC3p+sINmHUR6XRdyZ89BTnTHFpDx2p1Pt:6CRF9ZosINPEdyZ8hpt2p11
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D5362AA77244D43AC07F4935C52796F8593E6F20FE265D4B9AE83C49FF351802A3928B
sha3_384: 3100e3979d7a68fd4edfdce7b9bde19c1d2bd28fdb6472b44e0f9d2da72980016bb770f514bb1a2e544c3d0181e22173
ep_bytes: 558bec83c4f0b818097000e80442d0ff
timestamp: 2018-03-18 21:44:30


Version Info:

CompanyName: FoxyTeam
FileDescription: FoxyTeam Loader
FileVersion: 1.0.0.0
InternalName: Loader
LegalCopyright: FoxyTeam
OriginalFilename: foxyteam.exe
ProductName: Hack Loader
ProductVersion: 1.0.0.0
Translation: 0x0409 0x04e4

Bulz.121159 also known as:

MicroWorld-eScanGen:Variant.Bulz.121159
FireEyeGen:Variant.Bulz.121159
ALYacGen:Variant.Bulz.121159
Cybereasonmalicious.fd6a21
BitDefenderThetaGen:NN.ZelphiF.34294.@V0@aKLZpyik
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Bulz.121159
McAfee-GW-EditionBehavesLike.Win32.CoinMiner.rm
ArcabitTrojan.Bulz.D1D947
GDataGen:Variant.Bulz.121159
VBA32BScope.TrojanBanker.BestaFera
MAXmalware (ai score=89)
TrendMicro-HouseCallTROJ_GEN.R002H09HE21

How to remove Bulz.121159?

Bulz.121159 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment