Malware

Should I remove “Bulz.365705”?

Malware Removal

The Bulz.365705 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.365705 virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Binary compilation timestomping detected

How to determine Bulz.365705?



File Info:

name: E20473C80A12564C76AA.mlw
path: /opt/CAPEv2/storage/binaries/ee3cef661317bc8f514edaf1c03d6d1a4c8d46ad999d2aa62f7a62ade589903b
crc32: 51ED8130
md5: e20473c80a12564c76aaba35ad3e68e7
sha1: 2f5496f2f6da991a8a22877c65abfcc54f8be3a8
sha256: ee3cef661317bc8f514edaf1c03d6d1a4c8d46ad999d2aa62f7a62ade589903b
sha512: 22816edbcc755d6cc1d67c4fafb7e15451c11036ac91450d62bf299905181f2445c3e03c8f34a9fae224c2c2e980a4629110f9a9742a784b5a11cc5ebd81d76d
ssdeep: 384:YZiq5FVhNqJqZlMLlYK1qrZZ9c3gggggOb77777773IHfx6V:YZ/O4lM+ZIggggge77777773Ip6V
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11AC4BD7C01A0CD2184ED06664561E333D6A0862D4FBDAEDE8B97D044DA6E339CD72FAD
sha3_384: 69dfd35d485f1074ff7fa6f13c9c8e311edcde1d4b3a173341a3b84b4ce3b62d05abf0934fa8f4a6f441d455ec8ef384
ep_bytes: ff250020400000000000000000000000
timestamp: 2050-06-27 09:30:18


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: zx
FileVersion: 1.0.0.0
InternalName: zx.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: zx.exe
ProductName: zx
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Bulz.365705 also known as:

Elasticmalicious (high confidence)
ALYacGen:Variant.Bulz.365705
MalwarebytesMalware.AI.3807326225
CrowdStrikewin/malicious_confidence_70% (D)
BitDefenderGen:Variant.Bulz.365705
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.JIY
APEXMalicious
AvastWin32:CrypterX-gen [Trj]
CynetMalicious (score: 100)
KasperskyHEUR:Backdoor.MSIL.Bladabindi.gen
MicroWorld-eScanGen:Variant.Bulz.365705
Ad-AwareGen:Variant.Bulz.365705
EmsisoftGen:Variant.Bulz.365705 (B)
F-SecureHeuristic.HEUR/AGEN.1108909
FireEyeGeneric.mg.e20473c80a12564c
SophosML/PE-A
GDataGen:Variant.Bulz.365705
AviraHEUR/AGEN.1108909
ArcabitTrojan.Bulz.D59489
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
MAXmalware (ai score=82)
SentinelOneStatic AI – Malicious PE
FortinetMSIL/Kryptik.JIY!tr
BitDefenderThetaGen:NN.ZemsilF.34294.Km0@ay@I76i
AVGWin32:CrypterX-gen [Trj]
Cybereasonmalicious.80a125
MaxSecureTrojan.Malware.300983.susgen

How to remove Bulz.365705?

Bulz.365705 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment