Bulz.459387 information

The Bulz.459387 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.459387 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid
Binary compilation timestomping detected

How to determine Bulz.459387?


File Info:
name: 5F9569FA06941C69DF33.mlw
path: /opt/CAPEv2/storage/binaries/514fe0a78c02ef145bac0dca303a597d044cfe18eccaacb99c3d9954bfa994a0
crc32: A6590CDB
md5: 5f9569fa06941c69df336aceaf88a438
sha1: bb5b0c6820ffd733de86bf25583a402b455d0477
sha256: 514fe0a78c02ef145bac0dca303a597d044cfe18eccaacb99c3d9954bfa994a0
sha512: f51bcb88744c9db0c46f66936ef1b0d38da51eec258f0285f3d13db12383020ae8b20f9406a88d56837346c0ad3954f13813ca48cb7fd219b046ceb39c1eb74e
ssdeep: 384:XzVBzGLpifUww3RXCh27Bdu7/jVa1pBXCMVSyVd3B7AJxBGxHK/rNE+tqRLC+saq:XzVRM6bF2Zz3vkaSpPHuo
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T139D25E0176F50CB3DD39D6F50632660403F6A02B0832EBE99DC368EB56DBF950561E6B
sha3_384: 73e0a2b51cf84884a8267d6a8625dbed1d03191fec1613cfe386d202ed4717422368c75f21dd38920a20d408b98f8b90
ep_bytes: ff250020400000000000000000000000
timestamp: 2050-03-22 01:44:52

Version Info:
Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 1.0
InternalName: Winlocker.exe
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: Winlocker.exe
ProductName: 
ProductVersion: 1.0
Assembly Version: 1.0.0.0

Bulz.459387 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.Win32.Diztakun.4!c
MicroWorld-eScan	Gen:Variant.Bulz.459387
FireEye	Gen:Variant.Bulz.459387
McAfee	Artemis!5F9569FA0694
Sangfor	Trojan.Msil.Lockscreen.Vwd7
K7AntiVirus	Trojan ( 0057986c1 )
Alibaba	Trojan:MSIL/Diztakun.e9c7cd7b
K7GW	Trojan ( 0057986c1 )
Cybereason	malicious.a06941
Cyren	W32/ABRisk.VCRO-6084
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of MSIL/LockScreen.AIV
APEX	Malicious
Kaspersky	HEUR:Trojan.MSIL.Diztakun.gen
BitDefender	Gen:Variant.Bulz.459387
Avast	Win32:TrojanX-gen [Trj]
Tencent	Msil.Trojan.Diztakun.Rwhl
Ad-Aware	Gen:Variant.Bulz.459387
Emsisoft	Gen:Variant.Bulz.459387 (B)
F-Secure	Trojan.TR/LockScreen.xbdrr
DrWeb	Trojan.Siggen19.5614
VIPRE	Gen:Variant.Bulz.459387
McAfee-GW-Edition	Artemis!Trojan
Trapmine	suspicious.low.ml.score
Sophos	Mal/Generic-S
GData	Gen:Variant.Bulz.459387
Google	Detected
Avira	TR/LockScreen.xbdrr
Antiy-AVL	Trojan/Generic.ASMalwS.53EC
Kingsoft	Win32.Troj.Undef.(kcloud)
Arcabit	Trojan.Bulz.D7027B
ZoneAlarm	HEUR:Trojan.MSIL.Diztakun.gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5302620
BitDefenderTheta	Gen:NN.ZemsilF.34784.bm0@aC335pi
ALYac	Gen:Variant.Bulz.459387
MAX	malware (ai score=84)
TrendMicro-HouseCall	TROJ_GEN.R002H0CK922
Rising	Trojan.Generic/MSIL@AI.92 (RDM.MSIL:zubNfS2f4Yqs/xoQsvWbfg)
SentinelOne	Static AI – Suspicious PE
Fortinet	PossibleThreat
AVG	Win32:TrojanX-gen [Trj]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Bulz.459387?

Bulz.459387 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X