Malware

Bulz.499914 malicious file

Malware Removal

The Bulz.499914 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.499914 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Tries to unhook or modify Windows functions monitored by Cuckoo

How to determine Bulz.499914?



File Info:

name: E19C88FE66652B2EB30A.mlw
path: /opt/CAPEv2/storage/binaries/cf97785d3ae9c21ab02a7fc0f8299b9427f7ed50f9f6a2232ac3b45996f17401
crc32: 89FDDDC0
md5: e19c88fe66652b2eb30a4d792ad0b088
sha1: ebb75ff3880e1c7144d48f660581216cd9471206
sha256: cf97785d3ae9c21ab02a7fc0f8299b9427f7ed50f9f6a2232ac3b45996f17401
sha512: 17eaa1b81d1d5142861ac4cb6661fa7cee969335300fc9a2ee40cb48602b579c96ac3f1de61266815ab3c5c412f03cf0923b41e8b96b09117d53864df5020be4
ssdeep: 49152:ue9DKMWOldOlXpEkKAqY0ZZGnPeBh0xitTNjyElutP8NPT5NXH:1cpEk/nP7iSMVn
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T1F6C5D007A3A3C4E8C99BC1708217D372E930715B45357A7E1AE4EB131B25F50DBAE7A8
sha3_384: 05b662311ddbd1da72296a5f371dfeda4eadb1465cf7e44402472a5e1e96755b85205c0e6d38c0b28b08b73355579c07
ep_bytes: 4883ec28488b05556e2600c700000000
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Bulz.499914 also known as:

LionicTrojan.Win32.Bsymem.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.499914
FireEyeGen:Variant.Bulz.499914
CAT-QuickHealTrojan.Bsymem
McAfeeArtemis!E19C88FE6665
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Bsymem.a3dfb48f
K7GWRiskware ( 0040eff71 )
SymantecTrojan.Gen.MBT
KasperskyTrojan.Win32.Bsymem.aapi
BitDefenderGen:Variant.Bulz.499914
AvastWin64:Malware-gen
Ad-AwareGen:Variant.Bulz.499914
SophosMal/Generic-S
TrendMicroTROJ_GEN.R002C0WL221
McAfee-GW-EditionBehavesLike.Win64.BadFile.vc
EmsisoftGen:Variant.Bulz.499914 (B)
GDataGen:Variant.Bulz.499914
AviraHEUR/AGEN.1144152
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
ALYacGen:Variant.Bulz.499914
MAXmalware (ai score=81)
TrendMicro-HouseCallTROJ_GEN.R002C0WL221
TencentWin32.Trojan.Bsymem.Ajbo
IkarusTrojan.Crypt.XDropper
FortinetW64/GenKryptik.FFIJ!tr
AVGWin64:Malware-gen

How to remove Bulz.499914?

Bulz.499914 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment