Malware

Bulz.340811 removal instruction

Malware Removal

The Bulz.340811 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.340811 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Bulz.340811?



File Info:

name: C72B84F92230D87767E8.mlw
path: /opt/CAPEv2/storage/binaries/b919671bec0d945614af2b3619ecf425886474236d4fca567f151852abef976e
crc32: 289BD1D5
md5: c72b84f92230d87767e86f4a9c7d98e1
sha1: 6b1078370ab61417e8cac7aa4e27de92647f398c
sha256: b919671bec0d945614af2b3619ecf425886474236d4fca567f151852abef976e
sha512: ee8e5fc693569a5b74a4271dca8e312a909daf29180b3928750116fbd2ca3a6eb1e18c4accf4c553b5afda5d87bbab191f5e412adb432067ab829ed06b603b84
ssdeep: 192:qxqVD/ncMWyWgw4u1SuUD0Gk85txJpFD2PoKE9C7d:OyjncMWypwp20Gk85txJpFDYoK2C7d
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18332E82157E81176DA719532E8326B002E7AE6BF3E0B573E348C191D7F636018763B7A
sha3_384: 60abadfb1bf9900515340dd87d37b0070a3772b0bdedb19dfa5b1182347b39c2734237ef5a2d862a063468a5b9059c1b
ep_bytes: ff250020400000000000000000000000
timestamp: 2073-01-01 15:26:10


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: SimpleLoader
FileVersion: 51.2.621.4
InternalName: SimpleLoader.exe
LegalCopyright: Copyright © 2021 Saintbie
LegalTrademarks: 
OriginalFilename: SimpleLoader.exe
ProductName: SimpleLoader
ProductVersion: 51.2.621.4
Assembly Version: 51.2.621.4

Bulz.340811 also known as:

Elasticmalicious (high confidence)
CynetMalicious (score: 100)
McAfeeGenericRXCK-YY!C72B84F92230
MalwarebytesTrojan.Loader
BitDefenderGen:Variant.Bulz.340811
Cybereasonmalicious.92230d
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.HBI
APEXMalicious
KasperskyHEUR:Trojan-Spy.MSIL.SpyEyes.gen
MicroWorld-eScanGen:Variant.Bulz.340811
AvastWin32:RATX-gen [Trj]
Ad-AwareGen:Variant.Bulz.340811
EmsisoftGen:Variant.Bulz.340811 (B)
F-SecureHeuristic.HEUR/AGEN.1135869
DrWebTrojan.DownloaderNET.137
McAfee-GW-EditionBehavesLike.Win32.Generic.lm
FireEyeGeneric.mg.c72b84f92230d877
GDataGen:Variant.Bulz.340811
AviraHEUR/AGEN.1135869
MAXmalware (ai score=82)
ArcabitTrojan.Bulz.D5334B
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
AhnLab-V3Malware/Win32.Generic.C4384274
BitDefenderThetaGen:NN.ZemsilF.34062.am0@aGkSSIm
ALYacGen:Variant.Bulz.340811
SentinelOneStatic AI – Malicious PE
FortinetMSIL/Agent.HBI!tr.dldr
AVGWin32:RATX-gen [Trj]
MaxSecureTrojan.Malware.300983.susgen

How to remove Bulz.340811?

Bulz.340811 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment