Malware

Bulz.292386 (file analysis)

Malware Removal

The Bulz.292386 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.292386 virus can do?

  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Bulz.292386?



File Info:

name: 3F6A97F3F6B793E6C21E.mlw
path: /opt/CAPEv2/storage/binaries/f0682520fc36344f3050f7f73fabf43e25f1c5d16f2c7314f836102fa6940e75
crc32: A56E83FD
md5: 3f6a97f3f6b793e6c21e6995e0fcbb20
sha1: 639e434f7a8eedcbf8af795688d2c9c3975b4dc0
sha256: f0682520fc36344f3050f7f73fabf43e25f1c5d16f2c7314f836102fa6940e75
sha512: 6960ae784569e866b0fcf6164c517080bf2142df228d77522d774ec8d7d06415523cdad3ad9de56e931627f4a17be87a065a477da4538821aabb7c1ff3c92ce5
ssdeep: 192:5a7Ir/Mfr3aVQMLc9uke0JrhS/9NXShqiyDhyaa71gazqAxs33H9mHtIfX8EY:v/Lceeh8NXShqiHrsHsHqfX8E
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CA52D6113AFCD233E5B71FB118F1259147BEB6226916EB5D1445128E6B72B00CAD2F37
sha3_384: eaab787f36c3431cf0604aa2b8021395466f8146188de479d80657fa325cb2d258c6d7bceb9f6f13cb55c6f2e8742a84
ep_bytes: ff250020400000000000000000000000
timestamp: 2079-11-24 02:02:44


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: trackmoneys
FileVersion: 1.0.0.0
InternalName: trackmoneys.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: 
OriginalFilename: trackmoneys.exe
ProductName: trackmoneys
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Bulz.292386 also known as:

MicroWorld-eScanGen:Variant.Bulz.292386
FireEyeGen:Variant.Bulz.292386
ALYacGen:Variant.Bulz.292386
VIPREGen:Variant.Bulz.292386
BitDefenderGen:Variant.Bulz.292386
CrowdStrikewin/malicious_confidence_60% (W)
BitDefenderThetaGen:NN.ZemsilF.36792.am0@aOVnuye
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/Agent.TGL
APEXMalicious
KasperskyUDS:Trojan.PowerShell.Generic
AlibabaTrojan:MSIL/Generic.a420376e
NANO-AntivirusTrojan.Win32.Drop.fsrkzu
DrWebTrojan.MulDrop9.20398
EmsisoftGen:Variant.Bulz.292386 (B)
GDataGen:Variant.Bulz.292386
ArcabitTrojan.Bulz.D47622
ZoneAlarmUDS:Trojan.PowerShell.Generic
DeepInstinctMALICIOUS
SentinelOneStatic AI – Suspicious PE
FortinetMSIL/Agent.TGL!tr
Cybereasonmalicious.f7a8ee

How to remove Bulz.292386?

Bulz.292386 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment