Categories: Malware

How to remove “Bulz.588988”?

The Bulz.588988 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Bulz.588988 virus can do?

CAPE extracted potentially suspicious content
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Bulz.588988?


File Info:
name: 75829D58796C1D1262EF.mlwpath: /opt/CAPEv2/storage/binaries/ecb17944364ab7bb63b73cbdd453172605e9d448427af2944df9553f4c2648f2crc32: D010BCA4md5: 75829d58796c1d1262efc0cc684d7088sha1: 09017e9e6b8b5f414a07ce4e055486e7258957c4sha256: ecb17944364ab7bb63b73cbdd453172605e9d448427af2944df9553f4c2648f2sha512: dec10a165a38e1f59c88e54169cf14d016b33e4bfe89715a8ff6830345251e320da325e03b0073d3cf1e237cca33f64e46b9d20e9d32c9619e3c111f470a9e2bssdeep: 24576:a3Y9ESiWy9EFFTZdXTZdHXTZdXTZSy44c4xXFb21TbBnZcP/XSDMVccZKibLxo:a3yiSTZdXTZdHXTZdXTZDz+T0oMVcudtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T14F45E10AAA591D28F114F230B35FA1ABD75227B72BD207E10750B03777E364B9A7938Dsha3_384: 07538a3257d8e76c1d39acf4ad2827b142c627418d8fe259932f6fcde652c252ba3d1556ec1c6ad5fa8ffcb0378af5b2ep_bytes: ff250020400000000000000000000000timestamp: 2021-08-04 04:23:43
Version Info:
Translation: 0x0000 0x04b0Comments: 氏望的太商导司 管的的的敬管CompanyName: 顾物行务的的 人执引的泽敬名接FileDescription: 承生务家司为成尊希 导家为族管名名司FileVersion: 7.5.4.3InternalName: DDOS PANEL CRACKED       V.9.exeLegalCopyright: 物接是顾司羽 顾羽务顾太成首司氏LegalTrademarks: 氏生希司敬泽希 她的执她是泽顾OriginalFilename: DDOS PANEL CRACKED       V.9.exeProductName: 公泽司太孙人的 行商望官是商引法ProductVersion: 7.5.4.3Assembly Version: 0.0.0.0

Bulz.588988 also known as:

Lionic	Hacktool.MSIL.Generic.lRPN
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
FireEye	Generic.mg.75829d58796c1d12
ALYac	Gen:Variant.Bulz.588988
Malwarebytes	Generic.Malware.AI.DDS
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Trojan ( 00538b681 )
Alibaba	Trojan:Win32/runner.ali1000123
K7GW	Trojan ( 00538b681 )
Cybereason	malicious.e6b8b5
BitDefenderTheta	Gen:NN.ZemsilF.36662.lr0@aaolaZc
VirIT	Trojan.Win32.MSIL_Heur.A
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Kryptik.OZN
APEX	Malicious
ClamAV	Win.Packed.Orcus-6862378-0
Kaspersky	HEUR:Trojan-Spy.MSIL.Agent.gen
BitDefender	Gen:Variant.Bulz.588988
MicroWorld-eScan	Gen:Variant.Bulz.588988
Avast	Win32:RATX-gen [Trj]
Emsisoft	Gen:Variant.Bulz.588988 (B)
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Trojan.PackedNET.945
VIPRE	Gen:Variant.Bulz.588988
McAfee-GW-Edition	Artemis!Trojan
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
GData	Gen:Variant.Bulz.588988
Avira	TR/Dropper.Gen
MAX	malware (ai score=80)
Antiy-AVL	Trojan/MSIL.Kryptik
Arcabit	Trojan.Bulz.D8FCBC
ZoneAlarm	HEUR:Trojan-Spy.MSIL.Agent.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
Google	Detected
AhnLab-V3	Trojan/Win.Generic.C4583925
McAfee	Artemis!75829D58796C
Cylance	unsafe
Panda	Trj/GdSda.A
Rising	Trojan.Generic@AI.100 (RDML:/0Sbk9szMOAoDMhbEUf+hQ)
Yandex	Trojan.Kryptik!lKN6KvLI3oE
Ikarus	Trojan.MSIL.Injector
MaxSecure	Trojan.Malware.12302287.susgen
Fortinet	MSIL/Kryptik.OZN!tr
AVG	Win32:RATX-gen [Trj]
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (W)