Malware

BV:KillFiles-CO removal

Malware Removal

The BV:KillFiles-CO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What BV:KillFiles-CO virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Unconventionial language used in binary resources: Russian
  • Creates an autorun.inf file
  • Authenticode signature is invalid

How to determine BV:KillFiles-CO?



File Info:

name: 854EF65E832FD7B8FBDB.mlw
path: /opt/CAPEv2/storage/binaries/d72c6fe20e2320abec8a15c77ca7e684ff1505bb7a8c16484f45067d4d94e5eb
crc32: 2A22A287
md5: 854ef65e832fd7b8fbdbb27430dce5c1
sha1: 1a9af4e630fdb6caaba557a6195120d9943b9a39
sha256: d72c6fe20e2320abec8a15c77ca7e684ff1505bb7a8c16484f45067d4d94e5eb
sha512: 169ceb04b4a5945a6ad90cfd085e534c2a9d2f5d5cb53c1484d970e2db25ce306fa596b2c85d13aa2081850b2015a762b2bc8a49984b80638d5248d00672f85e
ssdeep: 6144:SOe8bbPuPo+PYimqLzrL7H9M4Q1PmT/hj34CW2WWuuB+ufQ64:S98mgomqLzrL7H9B2PmT5j34C5+S+Q2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13A64F105FB8781F3D8810B3019AC63B6EA79FF166B30B24ACB952C255C34591F52DAF6
sha3_384: 48041ca49e81826180a3f804eb3ce7099d06b808939a30894016479cf9df6a578b1eaeed8af65ba3013dd3a5feb0675b
ep_bytes: e82f2b000050e81b3101000000000090
timestamp: 2007-02-10 16:50:50


Version Info:

0: [No Data]

BV:KillFiles-CO also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Scar.4!c
McAfeeArtemis!854EF65E832F
Cylanceunsafe
SangforTrojan.Win32.Agent.V208
AlibabaTrojan:Win32/KillFiles.c8e3d132
Elasticmalicious (moderate confidence)
APEXMalicious
AvastBV:KillFiles-CO
KasperskyTrojan.Win32.Scar.hueo
McAfee-GW-EditionBehavesLike.Win32.BadFile.fc
XcitiumMalware@#kzvbuv1hxicu
ZoneAlarmTrojan.Win32.Scar.hueo
MAXmalware (ai score=99)
MalwarebytesGeneric.Malware/Suspicious
TrendMicro-HouseCallTROJ_GEN.R002H07E523
MaxSecureTrojan.Malware.211287861.susgen
FortinetW32/PossibleThreat
AVGBV:KillFiles-CO
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_60% (W)

How to remove BV:KillFiles-CO?

BV:KillFiles-CO removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment