Malware

Bulz.96871 removal guide

Malware Removal

The Bulz.96871 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Bulz.96871 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Bulz.96871?



File Info:

name: BA9817232EA50D0DB140.mlw
path: /opt/CAPEv2/storage/binaries/0e09166964b8ea46c5bc14ec8fbc32b871e6237a1b3d34ea9cba05a913b7334b
crc32: 8A2BB03B
md5: ba9817232ea50d0db1404f12a381abab
sha1: 5e26d9ccb84bd8195f21e16d07dbc5fcfa36d013
sha256: 0e09166964b8ea46c5bc14ec8fbc32b871e6237a1b3d34ea9cba05a913b7334b
sha512: 5e57e17c97888790067ddb355add9e29a6ea8e4f9cfa854bdd58cf17a032a89ab84963b92a1c37f659de0034d1c9deff3b29c269fb534fc20f7514a35335253e
ssdeep: 12288:7o093CptMm5/b+N5/b+CIVpgWFinIVpgWFinIVpgWFi1:knMm5/b+N5/b+Ckpz+kpz+kpzA
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B1B46B153131D20EEA5241B0F520F5F07665EC5AE71BC51B1AE33EEF357226A0F18AAE
sha3_384: 8b6a58b5875c0a744e85ad704e4282d18f06080608b7a6f0cac18200f353c66215895862e0093e4adefeac254f65d103
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-03-02 00:17:21


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: Steam Client Bootstrapper
FileVersion: 1.0.0.0
InternalName: Steam.exe
LegalCopyright: Copyright ©  2020
LegalTrademarks: 
OriginalFilename: Steam.exe
ProductName: Steam Client Bootstrapper
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Bulz.96871 also known as:

LionicTrojan.Win32.Ursu.4!c
MicroWorld-eScanGen:Variant.Bulz.96871
FireEyeGen:Variant.Bulz.96871
ALYacGen:Variant.Bulz.96871
CylanceUnsafe
SangforTrojan.Win32.Wacatac.C
APEXMalicious
BitDefenderGen:Variant.Bulz.96871
EmsisoftGen:Variant.Bulz.96871 (B)
McAfee-GW-EditionBehavesLike.Win32.Generic.hc
Paloaltogeneric.ml
MicrosoftPUA:Win32/Presenoker
GDataGen:Variant.Bulz.96871
AhnLab-V3Malware/Win32.RL_Generic.C4127422
McAfeeArtemis!BA9817232EA5
MAXmalware (ai score=86)
MalwarebytesMachineLearning/Anomalous.95%
TrendMicro-HouseCallTROJ_GEN.R002H09HE21
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.9334110.susgen
BitDefenderThetaGen:NN.ZemsilF.34182.Fm0@aCFzICm
Cybereasonmalicious.32ea50

How to remove Bulz.96871?

Bulz.96871 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment