Bulz.846035 (file analysis)

The Bulz.846035 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Bulz.846035 virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics
Binary compilation timestomping detected

How to determine Bulz.846035?


File Info:
name: 6F4C58E66DDD2C2B8976.mlw
path: /opt/CAPEv2/storage/binaries/da0f3b1b8eeec6d367a5614f77610e436e9a1f83681c47f95cd02df50e1b8d0e
crc32: 4B6EF633
md5: 6f4c58e66ddd2c2b8976489eb1b93180
sha1: 95374471aec54b52f13843f4c7299dbc471f14c5
sha256: da0f3b1b8eeec6d367a5614f77610e436e9a1f83681c47f95cd02df50e1b8d0e
sha512: d18b51e1a3010d31d6adf327724d2c75e7d9d8a5281d30c1456025da24c28fc3a0020378ef51a907255567bda807020ffb56caa06a7ade302c55f43d41cb4676
ssdeep: 6144:kd1E6dqi4py5YPmRFJs0ug1MOcKfV1M6Zqh7zLnrh:GEy1E0s0udOPs
type: PE32+ executable (console) x86-64, for MS Windows
tlsh: T180445B2276A5C1B2D8A261B44DADF2F5563EF8714F208AD73384A3BE4E707C05E35396
sha3_384: d88d8a80965897ab4db4f644fd1ff4a074acd96ca7a8ab52bad1fd7eea3c69337d6b89601c591b3e68d78f625de17c9f
ep_bytes: 4883ec28488d0d05d90200e810d30200
timestamp: 2106-02-05 18:03:44

Version Info:
0: [No Data]

Bulz.846035 also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Bulz.846035
FireEye	Gen:Variant.Bulz.846035
ALYac	Gen:Variant.Bulz.846035
Zillya	Worm.Pajetbin.Win32.13
K7GW	Riskware ( 00584baa1 )
K7AntiVirus	Riskware ( 00584baa1 )
Baidu	Win32.Trojan.VB.t
Cyren	W64/Ipamor.DA.gen!Eldorado
ClamAV	Win.Malware.Dqan-9885907-0
BitDefender	Gen:Variant.Bulz.846035
Avast	Win32:VB-FBX
Ad-Aware	Gen:Variant.Bulz.846035
Emsisoft	Gen:Variant.Bulz.846035 (B)
DrWeb	Win32.HLLW.Autoruner.547
Sophos	ML/PE-A
Antiy-AVL	Trojan/Win64.Generic
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Gen:Variant.Bulz.846035
Cynet	Malicious (score: 100)
MAX	malware (ai score=84)
Malwarebytes	Malware.AI.2797890020
Rising	Worm.VB!1.DA3E (CLASSIC)
Ikarus	Virus.Win32.Fakefire
Fortinet	W64/Pajetbin.N!tr
AVG	Win32:VB-FBX
MaxSecure	Trojan.Malware.121218.susgen

How to remove Bulz.846035?

Bulz.846035 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X