Malware

What is “Bulz.93940”?

Malware Removal

The Bulz.93940 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.93940 virus can do?

  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Bulz.93940?



File Info:

name: 6B1788D068C576A80A5F.mlw
path: /opt/CAPEv2/storage/binaries/df438df5f5d3b636e09a3eec6bd0b647b2951c89440a48304f2af2355f93c62b
crc32: A611E665
md5: 6b1788d068c576a80a5f8399352a8503
sha1: 7ba35c57cfeeab7a3fe09ec2ffc021deaeed8767
sha256: df438df5f5d3b636e09a3eec6bd0b647b2951c89440a48304f2af2355f93c62b
sha512: fdc881573f9368eeefea2f6e863119849b100221772fe2f1a3653f0a93fb07f226d326f1016bd7fbfc7a14ea02b59ce0c4a22ebefdd6f200a39581469919606b
ssdeep: 98304:0hMpHaJKjHM7jeMz9ZQ4Op9QQu4Lq/3YmYJX8d3AwKGcywY1VfnxNZFh6g8A:dBa2HM7SMz9ZQ4Op9Q+e/ImYMd37Lcy2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1CA267C21F253882BD0735A79DC5793D46829BF602E24AC473AA43E5CBF787C17E26247
sha3_384: 5ff71f9aadcf117dbc9a2358022f9e475d162a5f9b22c836946a17dbd1d08c166f9077ca2c4fb4de61083204a45ffe27
ep_bytes: 558bec83c4f0535657b820ef7500e811
timestamp: 2017-06-02 01:39:51


Version Info:

CompanyName: BGL Corporate Solutions
FileDescription: CAS for Windows
FileVersion: 2012.0.1.1
InternalName: 
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: 
ProductName: Corporate Affairs System
ProductVersion: 11.0
Comments: 
Translation: 0x0c09 0x04e4

Bulz.93940 also known as:

LionicTrojan.Win32.Bulz.4!c
MicroWorld-eScanGen:Variant.Bulz.93940
FireEyeGen:Variant.Bulz.93940
McAfeeArtemis!6B1788D068C5
VIPRETrojan.Win32.Generic!BT
CyrenW32/Trojan.HXPB-0718
BitDefenderGen:Variant.Bulz.93940
NANO-AntivirusTrojan.Win32.Antavmu.ekkpiu
Ad-AwareGen:Variant.Bulz.93940
EmsisoftGen:Variant.Bulz.93940 (B)
McAfee-GW-EditionArtemis
IkarusTrojan.Win32.ExeScript
GDataGen:Variant.Bulz.93940
GridinsoftRansom.Win32.Gen.sa
ArcabitTrojan.Bulz.D16EF4
ViRobotTrojan.Win32.Z.Bulz.4858992
ALYacGen:Variant.Bulz.93940
MAXmalware (ai score=89)
VBA32TScope.Trojan.Delf
FortinetW32/PossibleThreat

How to remove Bulz.93940?

Bulz.93940 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment