Malware

How to remove “Bulz.285394”?

Malware Removal

The Bulz.285394 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.285394 virus can do?

  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Bulz.285394?



File Info:

name: 94B43CF13814C6EC016D.mlw
path: /opt/CAPEv2/storage/binaries/400e3480bebfa8440c8cf9535f56b74450b31fc66954f81e9c7034fe80384c93
crc32: 64A06BA6
md5: 94b43cf13814c6ec016dab4a38eb7835
sha1: 771aa454feb779d39bed684ecdb0e7c0d50e29ff
sha256: 400e3480bebfa8440c8cf9535f56b74450b31fc66954f81e9c7034fe80384c93
sha512: 73f3614582de30ddaddedc8988db31b2b0406333e5eb18e5a076ae714ec4b0dc1b04c9c7400054680fe777742beb048b86c59f48f2b0e8422e5d570ba7534e03
ssdeep: 6144:UmA1seGrBR0HeYXJgUpL8SNFDu/O63hGSb/DB5pr0+UTsWkef1XwxQ1dXbAph8cX:CqEemp5bu9TlLfUTdwq13W
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D6A4F1253A9CBE1CD0982F780431052DAF7E71DE750399CB1ACC46DE6EFA7304992B96
sha3_384: 763339a628f241b3c30d039b8957d449f86a1a6913871c0f686b9094445a830c47afab58a98357677e41203a01c8c0b4
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-05-16 12:42:09


Version Info:

Translation: 0x0000 0x04b0
Comments:  
CompanyName:  
FileDescription:  
FileVersion: 1.0.7.9
InternalName: IG Stories Downloader.exe
LegalCopyright: Copyright ©  2020
LegalTrademarks:  
OriginalFilename: IG Stories Downloader.exe
ProductName:  
ProductVersion: 1.0.7.9
Assembly Version: 1.0.7.9

Bulz.285394 also known as:

BkavW32.AIDetectNet.01
MicroWorld-eScanGen:Variant.Bulz.285394
FireEyeGeneric.mg.94b43cf13814c6ec
ALYacGen:Variant.Bulz.285394
MalwarebytesTrojan.Downloader
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan-Downloader ( 005753d21 )
K7GWTrojan-Downloader ( 005753d21 )
Cybereasonmalicious.13814c
CyrenW32/Trojan.GLG.gen!Eldorado
Elasticmalicious (high confidence)
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.HEF
KasperskyHEUR:Trojan.MSIL.Agentb.gen
BitDefenderGen:Variant.Bulz.285394
AvastWin32:DangerousSig [Trj]
Ad-AwareGen:Variant.Bulz.285394
EmsisoftApplication.Downloader (A)
ZillyaDownloader.Agent.Win32.424628
McAfee-GW-EditionGenericRXLJ-PZ!94B43CF13814
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
JiangminDownloader.MSIL.pdr
AviraTR/Downloader.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
SUPERAntiSpywareTrojan.Agent/Gen-Bsymem
GDataGen:Variant.Bulz.285394
CynetMalicious (score: 99)
McAfeeGenericRXLJ-PZ!94B43CF13814
MAXmalware (ai score=82)
APEXMalicious
TencentMalware.Win32.Gencirc.11bcb09d
MaxSecureTrojan.Malware.74225041.susgen
FortinetMSIL/Ursu.4143!tr
AVGWin32:DangerousSig [Trj]

How to remove Bulz.285394?

Bulz.285394 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment