Malware

Bulz.31615 removal guide

Malware Removal

The Bulz.31615 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Bulz.31615 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Bulz.31615?


File Info:

crc32: 020B62EA
md5: 0bab5108d25de42927114bab4bd0da79
name: 0BAB5108D25DE42927114BAB4BD0DA79.mlw
sha1: e4e187d1f792278c6dcd8191113f7cd92b1b47c0
sha256: 2370248bc47bc9a6eb19bf5f364581e91c54540122695d7d49a1c6ecd0a3adb2
sha512: 9630397fcc1bfea85f3411980281ca33a11fd72d3d933664a7a5811dd561a59ee0bc926ad76b1fbfee3cd27c92b90e58dd4b6e3dd4877b3ee3ec214382570ce7
ssdeep: 1536:RTkrWKGiUsBxMpugMK7k5xKUgts5r+N1ledrX1JQy727iG2ze/PikYKdBukW578:RTkiLLpzMKgTsPetXP6AIJ
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

0: [No Data]

Bulz.31615 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacGen:Variant.Bulz.31615
CrowdStrikewin/malicious_confidence_100% (D)
Cybereasonmalicious.8d25de
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Injector.BNZ
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan.MSIL.Inject.abtth
BitDefenderGen:Variant.Bulz.31615
MicroWorld-eScanGen:Variant.Bulz.31615
Ad-AwareGen:Variant.Bulz.31615
SophosMal/Generic-S
ComodoMalware@#ww8zo58n4qa5
BitDefenderThetaGen:NN.ZemsilF.34294.liW@amMnFPf
McAfee-GW-EditionBehavesLike.Win32.Generic.cm
FireEyeGeneric.mg.0bab5108d25de429
EmsisoftGen:Variant.Bulz.31615 (B)
AviraHEUR/AGEN.1132934
KingsoftWin32.Troj.Generic_a.a.(kcloud)
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Bulz.31615
McAfeeArtemis!0BAB5108D25D
MAXmalware (ai score=84)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:Malware-gen

How to remove Bulz.31615?

Bulz.31615 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment