Bulz.782692 (file analysis)

The Bulz.782692 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.782692 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Bulz.782692?


File Info:
name: 267FDEEB125EA4FF4936.mlw
path: /opt/CAPEv2/storage/binaries/74d3cbb327834b6c5052d51452bdc9c8c0c2c45f1f6d5d4b74566fb3eeb40258
crc32: 9C71016F
md5: 267fdeeb125ea4ff4936ceaa4ddbd6a8
sha1: 02dd366461586afd2c3f6961594606c4e8a90cd3
sha256: 74d3cbb327834b6c5052d51452bdc9c8c0c2c45f1f6d5d4b74566fb3eeb40258
sha512: f8d7c58378bda8c380f904f2b7423cfdf29f51aec6c4c492fae169ea3f5cc5c1b5cc5826fdd98b132350d4baafe205f49e3318548cc8bc33dfa6bb4b40d9331e
ssdeep: 6144:f3J9lz8OhFxNBfrlMMJz9wzRJCphVvTYbgy8M/IabjKoh9WqrY:f586F3Bz3W7shV7CuM/IabjKoh9WqrY
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T11FB490126740AF62C50E10FB79DAA3635CE97DE405132366FB46BF2AAB32D6177C3211
sha3_384: 5ec42903812e2ed3faef7ad4a99b71d227d5c7335b3f51cc5602986ca9185135f713898231888a8a675af9acfd9a9a4b
ep_bytes: 4883ec28c705c2ed000001000000e81d
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Bulz.782692 also known as:

Lionic	Trojan.Win32.Bulz.4!c
MicroWorld-eScan	Gen:Variant.Bulz.782692
FireEye	Gen:Variant.Bulz.782692
McAfee	Artemis!267FDEEB125E
Alibaba	Virus:Win64/Autorun.a15bc00f
Cyren	W64/Ipamor.CY.gen!Eldorado
Symantec	Trojan.Gen.MBT
TrendMicro-HouseCall	TROJ_GEN.R002H0CL521
Avast	Win64:Malware-gen
Cynet	Malicious (score: 100)
BitDefender	Gen:Variant.Bulz.782692
Ad-Aware	Gen:Variant.Bulz.782692
Emsisoft	Gen:Variant.Bulz.782692 (B)
McAfee-GW-Edition	BehavesLike.Win64.Generic.gm
GData	Gen:Variant.Bulz.782692
Jiangmin	Trojan.Scar.szq
MaxSecure	Trojan.Malware.121218.susgen
Arcabit	Trojan.Bulz.DBF164
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
ALYac	Gen:Variant.Bulz.782692
MAX	malware (ai score=85)
APEX	Malicious
SentinelOne	Static AI – Suspicious PE
Fortinet	W32/Agent.84E4!tr
AVG	Win64:Malware-gen
CrowdStrike	win/malicious_confidence_70% (W)

How to remove Bulz.782692?

Bulz.782692 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X