Bulz.378668 removal tips

The Bulz.378668 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.378668 virus can do?

Sample contains Overlay data
Authenticode signature is invalid

How to determine Bulz.378668?


File Info:
name: 96B9D5AF12B5D533E0A8.mlw
path: /opt/CAPEv2/storage/binaries/6f768cb57907d9f480ffe00064b5153371108fcdeb8485b81f78ab0c48db3f20
crc32: 84F19E75
md5: 96b9d5af12b5d533e0a8f7ead1bf55f6
sha1: e527dd8ca29840c5541c580bc6552d0d2513469f
sha256: 6f768cb57907d9f480ffe00064b5153371108fcdeb8485b81f78ab0c48db3f20
sha512: 0fb18634c922bfb3783c1271a331e27baff919c4c89445c0a584b1bc253d36e812e41a1c979ba92457500b630431d3d8b8b5ab705642fa7012fb8968587a4da6
ssdeep: 196608:RF4SH9pra5I5o8p0p9a5yWfiSEQdqOw8z0D0mRhIZPQk7eny:Rb7a5I5+aGcdqOw8QLhiIAl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T150B633B1D24519D7D06E0F30B5DACA45A57ABF383E6A804089D8BA870DB5773CDC4EAC
sha3_384: b74863f4dc5ebf9fd35db04900aea4b9c556637f633be9080cc7193ce8f21873fcd132a5e14bd08f7e7dfbef2ff90af8
ep_bytes: 558bcc6aff687861400068cc30400064
timestamp: 2004-10-13 15:10:17

Version Info:
Comments: Created with Setup Factory 7.0
CompanyName: 
FileDescription: Setup Application
FileVersion: 7.0.1.0
InternalName: suf70_launch
LegalCopyright: Setup Engine Copyright © 2004 Indigo Rose Corporation
LegalTrademarks: Setup Factory is a trademark of Indigo Rose Corporation.
OriginalFilename: suf70_launch.exe
PrivateBuild: 
ProductName: Setup Factory 7.0 Runtime
ProductVersion: 7.0.1.0
SpecialBuild: 
Translation: 0x0409 0x04e4

Bulz.378668 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Bulz.378668
FireEye	Gen:Variant.Bulz.378668
Skyhigh	BehavesLike.Win32.Dropper.vc
ALYac	Gen:Variant.Bulz.378668
Cylance	unsafe
Sangfor	Trojan.Win32.Agent.Vzpa
CrowdStrike	win/malicious_confidence_60% (D)
Alibaba	Trojan:Win32/GenMalicious.dd882c4b
Arcabit	Trojan.Bulz.D5C72C
Symantec	Trojan.Gen.MBT
APEX	Malicious
BitDefender	Gen:Variant.Bulz.378668
Avast	Win32:Malware-gen
Emsisoft	Gen:Variant.Bulz.378668 (B)
DrWeb	Trojan.Click2.17539
VIPRE	Gen:Variant.Bulz.378668
Trapmine	malicious.moderate.ml.score
Microsoft	Program:Win32/Wacapew.C!ml
GData	Gen:Variant.Bulz.378668
McAfee	Artemis!96B9D5AF12B5
MAX	malware (ai score=88)
VBA32	Trojan.Click
Malwarebytes	Generic.Malware/Suspicious
TrendMicro-HouseCall	TROJ_GEN.R002H09IQ23
Rising	Trojan.ScarletFlash!8.FB27 (TFE:3:zplovWlwu9L)
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.188895743.susgen
Fortinet	W32/PossibleThreat
BitDefenderTheta	Gen:NN.ZevbaF.36608.LmZ@aamDSyd
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS

How to remove Bulz.378668?

Bulz.378668 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X