Malware

About “Bulz.362665” infection

Malware Removal

The Bulz.362665 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.362665 virus can do?

  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Bulz.362665?



File Info:

name: 3EC201ACA8336D8A0577.mlw
path: /opt/CAPEv2/storage/binaries/19eb29358c71ffcf6da83107e1ff8b5bae179433a4f9ae7a49904470a1af5d94
crc32: 3B2EA213
md5: 3ec201aca8336d8a0577f35763568636
sha1: 6d51d943d05efa3708661eeca8e26d625dc46f48
sha256: 19eb29358c71ffcf6da83107e1ff8b5bae179433a4f9ae7a49904470a1af5d94
sha512: e12f92e865c7f1049db9ebb8690af7fb3c62856c311d0645367107b705645d8a6f045d9fbbdb3b8501804bad95bda891a92c0777198e07ec04ff90723363a1d7
ssdeep: 49152:U/4MnYYJ2ZhqSGLHkJEMylj4oJdXN0BMOwLloBrugZcY/+:lIDQqJdXN0B7+sM7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T181F5281165514831DC2E8E304511AA78F5267D2FBE2F3E0B6E817E9EFBF32C25926532
sha3_384: 9ff7d293b4f8614d3238546994923bc2a8f071b665b304a9b00a6503dff619ecdd792d747ac59a59016df733a95ac5c5
ep_bytes: 81ec8401000053555633db57895c2418
timestamp: 2013-12-25 05:01:41


Version Info:

CompanyName: Mozilla Corporation
FileDescription: Mozilla Webapp Runtime App Uninstaller
FileVersion: 43.0.1
LegalCopyright: Mozilla Corporation
OriginalFilename: webapp-uninstaller.exe
ProductName: Mozilla Webapp Runtime App Uninstaller
ProductVersion: 43.0.1
Translation: 0x0409 0x04e4

Bulz.362665 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Bulz.4!c
MicroWorld-eScanGen:Variant.Bulz.362665
FireEyeGen:Variant.Bulz.362665
ALYacGen:Variant.Bulz.362665
Cybereasonmalicious.ca8336
ArcabitTrojan.Bulz.D588A9
CyrenW64/Autorun.EU.gen!Eldorado
SymantecTrojan.Gen.2
TrendMicro-HouseCallTROJ_GEN.R03BH09A422
ClamAVWin.Trojan.Wanacryptor-9862267-1
BitDefenderGen:Variant.Bulz.362665
AvastFileRepMalware
Ad-AwareGen:Variant.Bulz.362665
EmsisoftGen:Variant.Bulz.362665 (B)
JiangminPacked.Krap.gvyp
MaxSecureTrojan.Malware.121218.susgen
MAXmalware (ai score=89)
GridinsoftRansom.Win32.Sabsik.sa
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataGen:Variant.Bulz.362665
CynetMalicious (score: 100)
McAfeeArtemis!3EC201ACA833
APEXMalicious
SentinelOneStatic AI – Suspicious PE
AVGFileRepMalware

How to remove Bulz.362665?

Bulz.362665 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment