Malware

Should I remove “Bulz.918823”?

Malware Removal

The Bulz.918823 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.918823 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Presents an Authenticode digital signature
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

wpad.local-net

How to determine Bulz.918823?



File Info:

name: 8D7C96C565549F093778.mlw
path: /opt/CAPEv2/storage/binaries/de59deb773032adba79be6280d82c4e6678b5148d05bde2e0e6349b2569a24b5
crc32: 7F934C04
md5: 8d7c96c565549f093778514d3eff648b
sha1: 17206c51054f2aef318c64bb8cda85e03cc8217b
sha256: de59deb773032adba79be6280d82c4e6678b5148d05bde2e0e6349b2569a24b5
sha512: 8f0858fccdc3564c6420b8a2a282963447b15d4c4f9b5795ae7ffe26b79ccb74302a549a246d3ead7de9acc386319d2554ee35f77df992c555ae1c2ed877f8be
ssdeep: 6144:hnrFxyT8tLjOfeoVL22s80mTpJrrVYR5IxOMndmyvy9LNtShc:hnrFxyT8tL/odJ0Wuyvi
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T158A45B947FC818A4E4739AF589EE46418DBA3C5B5730C2CF1E90651A6E33BF08D79722
sha3_384: aef1e4aabf663f16e78076fce2b57b479b48918b8219cecc63763a16f47787042324247e63ae63fc97323301fb463232
ep_bytes: 4883ec28e80b1201004883c428e952fe
timestamp: 2020-03-12 06:47:51


Version Info:

CompanyName: Oracle Corporation
FileDescription: Java(TM) Web Start Launcher
FileVersion: 11.251.2.08
Full Version: 11.251.2.08
InternalName: Java(TM) Web Start Launcher
LegalCopyright: Copyright © 2020
OriginalFilename: javaws.exe
ProductName: Java(TM) Platform SE 8 U251
ProductVersion: 8.0.2510.8
Translation: 0x0000 0x04b0

Bulz.918823 also known as:

LionicTrojan.Win32.Mikey.4!c
MicroWorld-eScanGen:Variant.Bulz.918823
FireEyeGen:Variant.Bulz.918823
McAfeeArtemis!8D7C96C56554
CyrenW64/Ipamor.CR.gen!Eldorado
SymantecTrojan.Gen.MBT
TrendMicro-HouseCallTROJ_GEN.R002H09KN21
BitDefenderGen:Variant.Bulz.918823
AvastWin64:Malware-gen
Ad-AwareGen:Variant.Bulz.918823
BaiduWin32.Worm.Agent.u
McAfee-GW-EditionBehavesLike.Win64.Dropper.gh
EmsisoftGen:Variant.Bulz.918823 (B)
GDataGen:Variant.Bulz.918823
MAXmalware (ai score=81)
GridinsoftRansom.Win64.Wacatac.sa
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
ALYacGen:Variant.Bulz.918823
FortinetW64/DCom.AA!tr
AVGWin64:Malware-gen
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Bulz.918823?

Bulz.918823 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment