Malware

Bulz.606577 removal guide

Malware Removal

The Bulz.606577 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.606577 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Bulz.606577?



File Info:

name: F919F5401FB57072FE10.mlw
path: /opt/CAPEv2/storage/binaries/ba33ad0b63432634dda2c8c66449d5fd5bb344e63cae5a009e85bf03488f3c35
crc32: 51C91BF1
md5: f919f5401fb57072fe1031a1f5a8a991
sha1: 04bdfc99f3cad3676963108e418c26034d238193
sha256: ba33ad0b63432634dda2c8c66449d5fd5bb344e63cae5a009e85bf03488f3c35
sha512: af0f6be850240de396cf2f8da52d27261998b1c0576051465b2e186e951ee7445198fe1cc9047cc291910a5719b4ed6721e35a441e15be0b90145ac854d89daf
ssdeep: 49152:r+Z/4MnYYJ2ZhqSGLHkJEM0oJdXN0BMOwLloBrugPWWhipXq:rxIDQrJdXN0B7+sco
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T196267C026E5C4025DC6F3E304815E7B9F5217C6FBE2E794A2DC07E99EAB35C1792D222
sha3_384: 8c32d08cd87faeb5aa57e6574955ef93388525d368fbb8ecf5f969e7f6cf7660f5e2eeb953dbdfb42940458b4b98e712
ep_bytes: 4883ec28e80b4500004883c428e936fe
timestamp: 2018-03-15 13:15:18


Version Info:

Comments: http://www.autoitscript.com/autoit3/
CompanyName: AutoIt Team
FileDescription: Au3Info
FileVersion: 3, 3, 14, 5
InternalName: Au3Info.exe
LegalCopyright: ©1999-2018 Jonathan Bennett & AutoIt Team
OriginalFilename: Au3Info.exe
ProductName: Au3Info
ProductVersion: 3, 3, 14, 5
Translation: 0x0809 0x04b0

Bulz.606577 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.606577
FireEyeGeneric.mg.f919f5401fb57072
ALYacGen:Variant.Bulz.606577
CylanceUnsafe
AlibabaVirus:Win64/Ipamor.3e9af214
Cybereasonmalicious.9f3cad
CyrenW64/Ipamor.BF.gen!Eldorado
SymantecTrojan.Gen.MBT
TrendMicro-HouseCallTROJ_GEN.R03BH0CL321
BitDefenderGen:Variant.Bulz.606577
AvastWin64:Malware-gen
Ad-AwareGen:Variant.Bulz.606577
McAfee-GW-EditionBehavesLike.Win64.Ridnu.rm
EmsisoftGen:Variant.Bulz.606577 (B)
IkarusTrojan.Small
GDataGen:Variant.Bulz.606577
eGambitUnsafe.AI_Score_93%
MAXmalware (ai score=82)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!F919F5401FB5
APEXMalicious
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW64/Ipamor.959B!tr
AVGWin64:Malware-gen

How to remove Bulz.606577?

Bulz.606577 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment