Malware

Bulz.727397 information

Malware Removal

The Bulz.727397 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.727397 virus can do?

  • Creates RWX memory
  • Reads data out of its own binary image
  • A process created a hidden window
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Bulz.727397?



File Info:

crc32: 30579FC9
md5: afca14738e00c61a837d450b38a3f067
name: AFCA14738E00C61A837D450B38A3F067.mlw
sha1: bc07bcaa858fd87418563b54f1e3197a252c0ee8
sha256: 017a7ccf3e5eb12c679dad6b9897c1ea788975d6e5e90e4ddf59df981dd11ec1
sha512: 50f084c2ffd0b6592bea5face7092294003812421009e8241c8045c117aa9ae4e802bd4fb56398df06670ffbad57683c9157fc1b91a28443720b13fbf300772c
ssdeep: 12288:I02PWw9C6hlSZ6g2G0yKHp1VbWabfBnXo:wPWwcOq6g2BVpxbVo
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2016 Havy Alegria                                                                       
FileVersion: 5.2.2.187           
CompanyName: Havy Alegria                                                
Comments: This installation was built with Inno Setup.
ProductName: InnoExtractor                                               
ProductVersion: 5.2.2.187                                         
FileDescription: InnoExtractor Setup                                         
Translation: 0x0000 0x04b0

Bulz.727397 also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Banker1.36621
ClamAVWin.Trojan.Nemesis-9886552-0
ALYacGen:Variant.Bulz.727397
CylanceUnsafe
ZillyaTrojan.Generic.Win32.1433237
CrowdStrikewin/malicious_confidence_60% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32NSIS/Injector.AKO
ZonerProbably Heur.ExeHeaderH
APEXMalicious
AvastWin32:NSISDropper-B [Drp]
CynetMalicious (score: 99)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGen:Variant.Bulz.727397
MicroWorld-eScanGen:Variant.Bulz.727397
Ad-AwareGen:Variant.Bulz.727397
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Sality.hc
FireEyeGen:Variant.Bulz.727397
EmsisoftGen:Variant.Bulz.727397 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1140714
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataGen:Variant.Bulz.727397
AhnLab-V3Trojan/Win.Generic.C4559201
McAfeeArtemis!AFCA14738E00
MAXmalware (ai score=81)
MalwarebytesRansom.Sodinokibi
RisingTrojan.Injector/NSIS!1.BFBB (CLASSIC)
FortinetNSIS/Agent.AKO!tr
AVGWin32:NSISDropper-B [Drp]

How to remove Bulz.727397?

Bulz.727397 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment