Malware

Bulz.131551 removal instruction

Malware Removal

The Bulz.131551 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Bulz.131551 virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (2 unique times)
  • A process attempted to delay the analysis task.
  • Performs some HTTP requests
  • Unconventionial language used in binary resources: Spanish (Modern)
  • Uses Windows utilities for basic functionality
  • Anomalous binary characteristics
  • Uses suspicious command line tools or Windows utilities

Related domains:

www.gmail.com
ocsp.pki.goog
nodo4.us
crl.pki.goog
crls.pki.goog

How to determine Bulz.131551?


File Info:

crc32: 025D0B80
md5: 2499797cb486f7ec0cc8d24180e6b603
name: 2499797CB486F7EC0CC8D24180E6B603.mlw
sha1: a616a337a33da2bcebba7a41fea11adeb781cedc
sha256: 60c2813e631bb202730a33a5045d7ce95407606f86603098bf7ae813bed8321a
sha512: 79b68b269027a057f5934beefe49c48bad6fb1bc060090c104762efb67a69606298eea3a36b2b3d0834f3fe6c6d7beb35a30062c807f8604e2388398b1372d11
ssdeep: 768:aEQ3Gth3ZFMfoTygCZxhcn+YWffgshumdlMbe8i7oI:VcgNM04qn+5Ashukz8I
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0c0a 0x04b0
ProductVersion: 1.00
InternalName: bot15
FileVersion: 1.00
OriginalFilename: bot15.exe
ProductName: Support

Bulz.131551 also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan-Downloader ( 005706cd1 )
CynetMalicious (score: 99)
ALYacGen:Variant.Bulz.131551
CylanceUnsafe
SangforTrojan.Win32.Save.a
AlibabaTrojanDownloader:Win32/Generic.167a96cc
K7GWTrojan-Downloader ( 005706cd1 )
Cybereasonmalicious.cb486f
ESET-NOD32a variant of Win32/TrojanDownloader.VB.REI
APEXMalicious
AvastWin32:Malware-gen
BitDefenderGen:Variant.Bulz.131551
MicroWorld-eScanGen:Variant.Bulz.131551
TencentWin32.Trojan.Dropper.Hqvp
Ad-AwareGen:Variant.Bulz.131551
SophosMal/Generic-S
ComodoTrojWare.Win32.TrojanDownloader.VB.PMEA@4rev5s
BitDefenderThetaGen:NN.ZevbaF.34170.dm0@ayVIeCQ
McAfee-GW-EditionBehavesLike.Win32.Trojan.kt
FireEyeGeneric.mg.2499797cb486f7ec
EmsisoftGen:Variant.Bulz.131551 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Dropper.Gen
eGambitUnsafe.AI_Score_89%
Antiy-AVLTrojan/Generic.ASMalwS.2900921
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Bulz.131551
McAfeeArtemis!2499797CB486
YandexTrojan.GenAsa!aT6/HRjGglU
IkarusTrojan-Downloader.Win32.VB
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Bulz.131551?

Bulz.131551 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment