Categories: Malware

Bulz.264471 removal

The Bulz.264471 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Bulz.264471 virus can do?

Behavioural detection: Executable code extraction – unpacking
CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Bulz.264471?


File Info:
name: E49DC1D4533B5ED36E27.mlwpath: /opt/CAPEv2/storage/binaries/068f60ed333bd2bcb9d9349823de1af83495ba521f7b5bbb3f5c967bb5b7d0d2crc32: 89F8295Emd5: e49dc1d4533b5ed36e2705dd88174d33sha1: 01c902454c6017dfe56223fa9b97394fa7425d5esha256: 068f60ed333bd2bcb9d9349823de1af83495ba521f7b5bbb3f5c967bb5b7d0d2sha512: 96c03f6312d908fd7cc84ce19d1d67f29ad9f258a1b9ac195d840bc5aead6a33c9f79bffaeddb3f646bd959b6fd507b525f4e748f167e179f01eeb84f37619adssdeep: 12288:6ZlvlVtPgSNTt46RheFSHrHjokswAFz6aXgQ:67lVRTt4aheFSHzk7XFHXBtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T100A4F055B793C853C0A00B32C4259EFA6E5C6C33D8109C5B77A83F5D3B31D927A25BAAsha3_384: 3216bcbb13bccaa5e1c5ca556a184a2fc194012d4bc1e4f07c430b90c23f9e12d630122e8b1bb87fe55824b03c1b7976ep_bytes: e800000000505351525657558b44241ctimestamp: 2019-07-30 08:52:50
Version Info:
CompanyName: 云鹭工作室FileDescription: 新版赵云传（简体）FileVersion: 3.0InternalName: 新版赵云传.exeLegalCopyright: Copyright © 2025 Yunlu StudioOriginalFilename: 新版赵云传（简体）.exeProductName: 新版赵云传启动器ProductVersion: 3.0Assembly Version: 3.0Translation: 0x0000 0x04b0

Bulz.264471 also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Tiny.trFe
MicroWorld-eScan	Gen:Variant.Bulz.264471
FireEye	Generic.mg.e49dc1d4533b5ed3
Skyhigh	BehavesLike.Win32.Generic.gc
McAfee	Artemis!E49DC1D4533B
Cylance	unsafe
CrowdStrike	win/malicious_confidence_70% (W)
Arcabit	Trojan.Bulz.D40917
BitDefenderTheta	Gen:NN.ZexaF.36608.Cy0@ami3Ojb
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
APEX	Malicious
BitDefender	Gen:Variant.Bulz.264471
Sophos	Generic ML PUA (PUA)
VIPRE	Gen:Variant.Bulz.264471
Emsisoft	Gen:Variant.Bulz.264471 (B)
Ikarus	Trojan.Win32.Crypt
Antiy-AVL	Trojan/Win32.Nitol
Kingsoft	malware.kb.a.985
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Bulz.264471
Google	Detected
VBA32	BScope.Trojan.Sabsik.FL
ALYac	Gen:Variant.Bulz.264471
MAX	malware (ai score=89)
Malwarebytes	Generic.Malware.AI.DDS
Zoner	Trojan.Win32.85523
Rising	Trojan.Generic@AI.100 (RDML:GGCbLsAI3e1ladMv+WIOlw)
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
Cybereason	malicious.54c601
DeepInstinct	MALICIOUS