About “Bulz.589951” infection

The Bulz.589951 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.589951 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Bulz.589951?


File Info:
name: 1EBB7AF24D7744BF791C.mlw
path: /opt/CAPEv2/storage/binaries/59d5f3354ea48a1af2ed5dd958ba3c97f6bb3544701a313d8d6f5ed4f62691ba
crc32: 7EAC8460
md5: 1ebb7af24d7744bf791c62264460033b
sha1: b6c4c635d5e2b4ecd1a2e490601b0603656c450d
sha256: 59d5f3354ea48a1af2ed5dd958ba3c97f6bb3544701a313d8d6f5ed4f62691ba
sha512: b320a19348c9b00210301e818f1212a41ce7d51c8632c14eb776359bf9bf6eddcbf72c4c6b69ef8164bf4ceabbb85457deb07099e73bfb395d052160a7b1778e
ssdeep: 49152:uGtlqCkIU6iYjOl41PXso95Qvv5NouuZd446JbWGu4qCGEeKvGuW8Xz6sswUmETG:1+YKavkouuZvmwFD9JHdZxyGq3
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T12F16AD42A6A401F8D4B6C13DC9579627E7B2B81513B0DBCB03A4967A0F73BE16E3E750
sha3_384: f0ad10667661c7a448ff2205dce2259dc3f35021c76ed91a4793740d7b759bacdf5677ccb2e2f985d6ad279e49b1442d
ep_bytes: 4883ec28e8930500004883c428e97afe
timestamp: 2021-07-16 08:58:50

Version Info:
0: [No Data]

Bulz.589951 also known as:

Lionic	Trojan.Win32.Generic.4!c
MicroWorld-eScan	Gen:Variant.Bulz.589951
FireEye	Gen:Variant.Bulz.589951
ALYac	Gen:Variant.Bulz.589951
Cylance	Unsafe
Sangfor	Trojan.Win32.Trickbot.ml
Cyren	W64/Trojan.WSZE-8270
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Generik.NMCASGX
BitDefender	Gen:Variant.Bulz.589951
Avast	Win64:Trojan-gen
Ad-Aware	Gen:Variant.Bulz.589951
Emsisoft	Gen:Variant.Bulz.589951 (B)
VIPRE	Trojan.Win32.Generic!BT
McAfee-GW-Edition	BehavesLike.Win64.Dropper.rh
Sophos	Mal/Generic-S
Ikarus	Trojan.Win64.Crypt
GData	Gen:Variant.Bulz.589951
Avira	HEUR/AGEN.1144265
Antiy-AVL	Trojan/Generic.ASMalwS.3480405
Microsoft	Trojan:Win32/Trickbot!ml
Cynet	Malicious (score: 100)
McAfee	Artemis!1EBB7AF24D77
MAX	malware (ai score=88)
Malwarebytes	Malware.AI.3835713497
TrendMicro-HouseCall	TROJ_GEN.R002H09H621
Fortinet	W32/PossibleThreat
AVG	Win64:Trojan-gen

How to remove Bulz.589951?

Bulz.589951 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X