Malware

About “Bulz.874829” infection

Malware Removal

The Bulz.874829 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.874829 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Presents an Authenticode digital signature
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Bulz.874829?



File Info:

name: D9C72D32A8CACF822FEC.mlw
path: /opt/CAPEv2/storage/binaries/978bc9dee6ff537235b13f5539765a628d7515d4775eb44a9dd32cc5af672968
crc32: 2F05B374
md5: d9c72d32a8cacf822fecfeab445839e3
sha1: 252ae1ca6e155cdf0a6becb5e27e95ae2e636f58
sha256: 978bc9dee6ff537235b13f5539765a628d7515d4775eb44a9dd32cc5af672968
sha512: aba034d7932ceb3f84a71abb824bf8d05069bbb6db2181e911daad2deec19a2a6f620aad6fb046adc9f884a24bf765cb0d3dae1a6d521981bad7f362924dee57
ssdeep: 12288:MjC6V2lYi+B+4cMSpiwjC6V2lIiwjC6V2lYi+B+4cMS0:p7Yi+BNc5pil7Iil7Yi+BNc50
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T1E8158E43BBE054F1E463453045B19922EB7BFC3217608BAF53A8416A1F726D0EE39F66
sha3_384: 763864b9b0d751a53e0671c52f1ce29ad6b67b471cae5724f9ed4c289355f32eab22234b44e7ee73b3bb09ff4c79d2f1
ep_bytes: 4883ec28e85b0200004883c428e97afe
timestamp: 2021-08-11 22:26:42


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Edge
FileVersion: 92.0.902.73
InternalName: cookie_exporter_exe
LegalCopyright: Copyright Microsoft Corporation. All rights reserved.
OriginalFilename: cookie_exporter.exe
ProductName: Microsoft Edge
ProductVersion: 92.0.902.73
CompanyShortName: Microsoft
ProductShortName: Microsoft Edge
LastChange: cad199e39220991414cd71868a619fff614880c7
Official Build: 1
Translation: 0x0409 0x04b0

Bulz.874829 also known as:

LionicTrojan.Win32.Bulz.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Bulz.874829
FireEyeGeneric.mg.d9c72d32a8cacf82
McAfeeArtemis!D9C72D32A8CA
CylanceUnsafe
CyrenW64/Bulz.BT.gen!Eldorado
Paloaltogeneric.ml
ClamAVWin.Worm.Vindor-9886047-0
BitDefenderGen:Variant.Bulz.874829
AvastWin32:VB-FBX
Ad-AwareGen:Variant.Bulz.874829
EmsisoftGen:Variant.Bulz.874829 (B)
DrWebWin32.HLLW.Autoruner.547
TrendMicroPossible_SMDITERTAG2
McAfee-GW-EditionArtemis!Trojan
SophosGeneric ML PUA (PUA)
GDataGen:Variant.Bulz.874829
Antiy-AVLTrojan/Generic.ASMalwS.349521C
ArcabitTrojan.Bulz.DD594D
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
ALYacGen:Variant.Bulz.874829
MAXmalware (ai score=85)
MalwarebytesMalware.AI.3696146603
RisingWorm.VB!1.DA41 (CLASSIC)
IkarusTrojan.Msil
MaxSecureTrojan.Malware.121218.susgen
FortinetW64/Bulz.BT!tr
AVGWin32:VB-FBX
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Bulz.874829?

Bulz.874829 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment