Malware

Bulz.508751 (file analysis)

Malware Removal

The Bulz.508751 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.508751 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Bulz.508751?



File Info:

name: D5F66D8C2F7C47E03E67.mlw
path: /opt/CAPEv2/storage/binaries/75354534e291cde74eae10ada9658105fb830fdfed54902109f2b447e71eeda5
crc32: F52183F6
md5: d5f66d8c2f7c47e03e679a08ddf7073d
sha1: d8ae56ecc8bca48c272686b17edae1bf8b99be89
sha256: 75354534e291cde74eae10ada9658105fb830fdfed54902109f2b447e71eeda5
sha512: d678defcafd1e1a124a83cc70ea633b1c418029f53f679b36b11ad1eb7f8423a7a9d73202854e53184462765b0fa37d7cda3badc8bc14c20e7756863d6a7f927
ssdeep: 6144:3mx1wxVPHujQA97LdE2JKHDRuwMy7cs7H9:ewxc0M9E2JKH1PBZ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D1645B5133EC4A39E5FF0B7DF475121047B8F94B99A6DB0DB4C8A4EE1A2334199523A3
sha3_384: 8652242d459545aa75a2ab0d9e1039dfddb8b9b8753330a00ccec67686f0cd8764217619e4f1a2270b9f1661e5db7706
ep_bytes: ff250020400000000000000000000000
timestamp: 2016-04-10 13:50:08


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Movie Player
FileVersion: 1.0.0.0
InternalName: Movie-Player.exe
LegalCopyright: Copyright ©  2016
LegalTrademarks: 
OriginalFilename: Movie-Player.exe
ProductName: Movie Player
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Bulz.508751 also known as:

LionicTrojan.Win32.Agent.b!c
DrWebTrojan.DownLoader21.9896
MicroWorld-eScanGen:Variant.Bulz.508751
FireEyeGeneric.mg.d5f66d8c2f7c47e0
McAfeeArtemis!D5F66D8C2F7C
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforTrojan.Win32.Agent.8
BitDefenderGen:Variant.Bulz.508751
Cybereasonmalicious.cc8bca
BitDefenderThetaGen:NN.ZemsilF.34160.tm0@a4XKfjk
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_GEN.R002C0WAF22
Paloaltogeneric.ml
KasperskyTrojan-Dropper.Win32.Agent.bjrcai
NANO-AntivirusTrojan.Win32.Agent.egzyzy
ViRobotTrojan.Win32.Z.Agent.313344.ACZ
Ad-AwareGen:Variant.Bulz.508751
ComodoMalware@#srza3erq3zfk
TrendMicroTROJ_GEN.R002C0WAF22
McAfee-GW-EditionBehavesLike.Win32.Generic.fh
EmsisoftGen:Variant.Bulz.508751 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojanDropper.Agent.cdli
WebrootW32.Trojan.Gen
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Bulz.508751
ALYacGen:Variant.Bulz.508751
PandaTrj/GdSda.A
APEXMalicious
TencentWin32.Trojan-dropper.Agent.Wtxe
YandexTrojan.DR.Agent!QwdbV3wL4XY
MAXmalware (ai score=88)
FortinetW32/Agent.BJRCAI!tr
AVGWin32:Malware-gen
AvastWin32:Malware-gen

How to remove Bulz.508751?

Bulz.508751 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment