About “Bulz.541088 (B)” infection

The Bulz.541088 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.541088 (B) virus can do?

Authenticode signature is invalid
Anomalous binary characteristics

How to determine Bulz.541088 (B)?


File Info:
name: 498BF696569275274D59.mlw
path: /opt/CAPEv2/storage/binaries/045ca76ef4aeb792963069e568a0893476d067e9cccffa395fb6311d987756d8
crc32: 50C234D6
md5: 498bf696569275274d593461a1be8e09
sha1: ef8db0f6d14e969a9a48a5be274a828f6ce9383d
sha256: 045ca76ef4aeb792963069e568a0893476d067e9cccffa395fb6311d987756d8
sha512: 0e904dd2ca3745c0b7941a04eac5d52b5d8d50569f64cdd0678f25223605615437b4b136c6b027e209b4a595c69e1d27c06499f167e89e45a4cab06caf0177b6
ssdeep: 12288:75iWOc1BTW5fAQSNziFVg/mbuJcfcXbz0TfxIJiMV/esbTD2wp:NiWPkBlSNzi/ucfc0TJIJid0Tqwp
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T156352919F6B08533D6B6157149AB56E0F666BC028B20C2CF128F377E5EF27809D2539E
sha3_384: 820898e132604ddd4f9b9070ca6b89c09466a5873307c82b3dcec9ade0f8b9174faf8bf6873829f9ae5ff28fffd43978
ep_bytes: 6a7068902c0001e83103000033ff57ff
timestamp: 2004-08-04 06:06:51

Version Info:
CompanyName: Microsoft Corporation
FileDescription: Microsoft Magnifier
FileVersion: 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158)
InternalName: MAGNIFIER
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: MAGNIFY.EXE
ProductName: Microsoft® Windows® Operating System
ProductVersion: 5.1.2600.2180
Translation: 0x0409 0x04b0

Bulz.541088 (B) also known as:

MicroWorld-eScan	Gen:Variant.Bulz.541088
FireEye	Generic.mg.498bf69656927527
McAfee	Artemis!498BF6965692
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
Cybereason	malicious.656927
Cyren	W32/MSIL_Kryptik.CZ.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Paloalto	generic.ml
BitDefender	Gen:Variant.Bulz.541088
Avast	Win32:Malware-gen
Ad-Aware	Gen:Variant.Bulz.541088
Sophos	Generic ML PUA (PUA)
McAfee-GW-Edition	BehavesLike.Win32.Generic.th
SentinelOne	Static AI – Suspicious PE
Emsisoft	Gen:Variant.Bulz.541088 (B)
APEX	Malicious
GData	Gen:Variant.Bulz.541088
eGambit	Unsafe.AI_Score_97%
Avira	HEUR/AGEN.1104914
MAX	malware (ai score=85)
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Bulz.541088
Fortinet	W32/Ipamor.CC4C!tr
AVG	Win32:Malware-gen
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Bulz.541088 (B)?

Bulz.541088 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X