Malware

Bulz.160828 removal guide

Malware Removal

The Bulz.160828 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.160828 virus can do?

  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Bulz.160828?



File Info:

name: 6836AE7E86B6C2205EF3.mlw
path: /opt/CAPEv2/storage/binaries/bd8eb52c9268cfbb01d88ce4bbe0201d26c7bd6f333eb487ce5cb56d36031896
crc32: ED46AB88
md5: 6836ae7e86b6c2205ef39184b2dab2c2
sha1: 5a5456683c26183a93a51f3370ab85f11a23aa15
sha256: bd8eb52c9268cfbb01d88ce4bbe0201d26c7bd6f333eb487ce5cb56d36031896
sha512: ce7546f0ce06afbdc0775b5a3ce0c24107e3cb9faa0c192a5188c9abc1539450b5dd5eb293b6c44ff0f15a312721fdcb94d5775ecdb65746184c293de050616d
ssdeep: 24576:KRaoy3Wr+OMry5fzfS5aQabGDtmR9L/BHCJ9TPgX9C8:KMEr+w5W5jabX9LpC3Tz8
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T11E754A01B7514019FDFB02FB8AFE606C953CBDA0076890C761C56AEE5A2ABF17D3161B
sha3_384: 2d9ac3e3f4a2ca992a3d72fd44f461c78afc616f57466603cc4787ed5353b81c4fdcb8cb31f20d32651d5f8435bde591
ep_bytes: e9ceb20800e979ec0100e9c4e51000e9
timestamp: 2024-04-24 01:08:43


Version Info:

CompanyName: FUCK THE UNIVERSE
FileDescription: A GHOST
FileVersion: 1.0.0.5
InternalName: ServerDll.dll
LegalCopyright: Copyright (C) 2019-2025
OriginalFilename: ServerDll.dll
ProductName: A GHOST
ProductVersion: 1.0.0.1
Translation: 0x0804 0x04b0

Bulz.160828 also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.160828
MalwarebytesBackdoor.Farfli
VIPREGen:Variant.Bulz.160828
SangforTrojan.Win32.SilverFox.swkaj
K7AntiVirusTrojan ( 0055617f1 )
K7GWTrojan ( 0055617f1 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Farfli.CSP
TrendMicro-HouseCallTROJ_GEN.R011C0RDQ24
KasperskyHEUR:Backdoor.Win32.Agent.gen
BitDefenderGen:Variant.Bulz.160828
AvastWin32:BackdoorX-gen [Trj]
EmsisoftGen:Variant.Bulz.160828 (B)
GoogleDetected
F-SecureTrojan.TR/ATRAPS.Gen2
TrendMicroTROJ_GEN.R011C0RDQ24
FireEyeGen:Variant.Bulz.160828
SophosMal/Farfli-X
IkarusWin32.Outbreak
AviraTR/ATRAPS.Gen2
Antiy-AVLTrojan/Win32.Farfli
ArcabitTrojan.Bulz.D2743C
ZoneAlarmHEUR:Backdoor.Win32.Agent.gen
GDataWin32.Backdoor.Ghost.C
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.R290544
ALYacGen:Variant.Bulz.160828
MAXmalware (ai score=86)
PandaTrj/Genetic.gen
RisingBackdoor.Gh0st!1.F51B (CLASSIC)
AVGWin32:BackdoorX-gen [Trj]
DeepInstinctMALICIOUS
alibabacloudTrojan.Win.UnkAgent

How to remove Bulz.160828?

Bulz.160828 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment