Categories: Malware

About “Bulz.874829” infection

The Bulz.874829 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Bulz.874829 virus can do?

SetUnhandledExceptionFilter detected (possible anti-debug)
Dynamic (imported) function loading detected
Presents an Authenticode digital signature
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Bulz.874829?


File Info:
name: D9C72D32A8CACF822FEC.mlwpath: /opt/CAPEv2/storage/binaries/978bc9dee6ff537235b13f5539765a628d7515d4775eb44a9dd32cc5af672968crc32: 2F05B374md5: d9c72d32a8cacf822fecfeab445839e3sha1: 252ae1ca6e155cdf0a6becb5e27e95ae2e636f58sha256: 978bc9dee6ff537235b13f5539765a628d7515d4775eb44a9dd32cc5af672968sha512: aba034d7932ceb3f84a71abb824bf8d05069bbb6db2181e911daad2deec19a2a6f620aad6fb046adc9f884a24bf765cb0d3dae1a6d521981bad7f362924dee57ssdeep: 12288:MjC6V2lYi+B+4cMSpiwjC6V2lIiwjC6V2lYi+B+4cMS0:p7Yi+BNc5pil7Iil7Yi+BNc50type: PE32+ executable (GUI) x86-64, for MS Windowstlsh: T1E8158E43BBE054F1E463453045B19922EB7BFC3217608BAF53A8416A1F726D0EE39F66sha3_384: 763864b9b0d751a53e0671c52f1ce29ad6b67b471cae5724f9ed4c289355f32eab22234b44e7ee73b3bb09ff4c79d2f1ep_bytes: 4883ec28e85b0200004883c428e97afetimestamp: 2021-08-11 22:26:42
Version Info:
CompanyName: Microsoft CorporationFileDescription: Microsoft EdgeFileVersion: 92.0.902.73InternalName: cookie_exporter_exeLegalCopyright: Copyright Microsoft Corporation. All rights reserved.OriginalFilename: cookie_exporter.exeProductName: Microsoft EdgeProductVersion: 92.0.902.73CompanyShortName: MicrosoftProductShortName: Microsoft EdgeLastChange: cad199e39220991414cd71868a619fff614880c7Official Build: 1Translation: 0x0409 0x04b0

Bulz.874829 also known as:

Lionic	Trojan.Win32.Bulz.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Bulz.874829
FireEye	Generic.mg.d9c72d32a8cacf82
McAfee	Artemis!D9C72D32A8CA
Cylance	Unsafe
Cyren	W64/Bulz.BT.gen!Eldorado
Paloalto	generic.ml
ClamAV	Win.Worm.Vindor-9886047-0
BitDefender	Gen:Variant.Bulz.874829
Avast	Win32:VB-FBX
Ad-Aware	Gen:Variant.Bulz.874829
Emsisoft	Gen:Variant.Bulz.874829 (B)
DrWeb	Win32.HLLW.Autoruner.547
TrendMicro	Possible_SMDITERTAG2
McAfee-GW-Edition	Artemis!Trojan
Sophos	Generic ML PUA (PUA)
GData	Gen:Variant.Bulz.874829
Antiy-AVL	Trojan/Generic.ASMalwS.349521C
Arcabit	Trojan.Bulz.DD594D
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
ALYac	Gen:Variant.Bulz.874829
MAX	malware (ai score=85)
Malwarebytes	Malware.AI.3696146603
Rising	Worm.VB!1.DA41 (CLASSIC)
Ikarus	Trojan.Msil
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W64/Bulz.BT!tr
AVG	Win32:VB-FBX
CrowdStrike	win/malicious_confidence_70% (W)