Malware

Bulz.500284 removal guide

Malware Removal

The Bulz.500284 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.500284 virus can do?

  • Creates RWX memory
  • Exhibits possible ransomware file modification behavior
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Bulz.500284?



File Info:

crc32: C1B1CC3A
md5: ca2ab143a7eb5aecffcdf2c9d911d570
name: CA2AB143A7EB5AECFFCDF2C9D911D570.mlw
sha1: 65517a8f87752f73896a1dbc1a9ca6e3461e89f4
sha256: b71141be14948bf10eaaca206d5712dca32f911c264890a8b17e8c50a4e7c3ca
sha512: bc8ef52b413a2d5c4b501e5c630480150e14ed52922f43e2c60d4f04bf9a7bc27b6f6bd617389b06076c3c1793b0591bf975f1b779e91cae3f0ca140d2738848
ssdeep: 1536:TauHxBoG1pQSQboCG6ZKETYG0r4R85xwSBgip1mQSQy:T5WKybJNKEkG0sREdB/6yy
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright:  
Assembly Version: 1.0.0.0
InternalName: TaRRaK.exe
FileVersion: 1.0.0.0
CompanyName: TaRRaK
ProductName: TaRRaK
ProductVersion: 1.0.0
FileDescription: TaRRaK
OriginalFilename: TaRRaK.exe

Bulz.500284 also known as:

K7AntiVirusTrojan ( 0057d7311 )
DrWebTrojan.Encoder.33985
CynetMalicious (score: 99)
ALYacTrojan.Ransom.Filecoder
CrowdStrikewin/malicious_confidence_80% (W)
K7GWTrojan ( 0057d7311 )
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Filecoder.AIY
APEXMalicious
AvastWin32:MalwareX-gen [Trj]
KasperskyHEUR:Trojan-Ransom.MSIL.Encoder.gen
BitDefenderGen:Variant.Bulz.500284
MicroWorld-eScanGen:Variant.Bulz.500284
Ad-AwareGen:Variant.Bulz.500284
BitDefenderThetaGen:NN.ZemsilF.34722.lm0@aGufBbh
TrendMicroRansom_TarkCrypt.R03BC0DF321
FireEyeGen:Variant.Bulz.500284
EmsisoftTrojan-Ransom.Agent (A)
SentinelOneStatic AI – Suspicious PE
AviraTR/Ransom.rywoh
MicrosoftRansom:MSIL/TarkCrypt.PA!MTB
ArcabitTrojan.Bulz.D7A23C
GDataWin32.Trojan.Agent.F2H1Y3
AhnLab-V3Trojan/Win.Ransom.C4510597
McAfeeGenericRXOS-WT!CA2AB143A7EB
MAXmalware (ai score=80)
MalwarebytesTrojan.StartPage
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom_TarkCrypt.R03BC0DF321
IkarusTrojan.SuspectCRC
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
AVGWin32:MalwareX-gen [Trj]
Paloaltogeneric.ml

How to remove Bulz.500284?

Bulz.500284 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment