Malware

CXrep/MalGo-A removal

Malware Removal

The CXrep/MalGo-A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What CXrep/MalGo-A virus can do?

  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

Related domains:

wpad.local-net

How to determine CXrep/MalGo-A?



File Info:

name: 578E9760CDC76DD6B299.mlw
path: /opt/CAPEv2/storage/binaries/2ea99e2266b77a0e27a668448837beb109c6039a0de4d0cc456e9853e8a3906a
crc32: 1BE4E5EF
md5: 578e9760cdc76dd6b2992006ab3196aa
sha1: 532f46ed43fa64f3e0cab2a2ed3f0dd4d0a2abea
sha256: 2ea99e2266b77a0e27a668448837beb109c6039a0de4d0cc456e9853e8a3906a
sha512: d23e576ae04f5daa32118785ce6a166af58bfd9a54a26f2555435cb0b853a5b92ff2fb9b572903b91f44538070b0a19b5b419576b7339ec2812549d58477e060
ssdeep: 12288:cnIt4QQgADbF91B4UHF4CsRU5HiJvqHvSfGbYMkmsTpYSPSKoMZZVlDDGmxlK1:QIt4XDbZ5HwKvrYMJmJZPPxU1
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T1C0651706B8D214FAC57EE5318552E2717A323C6447322BDB2ED176AE0AB5FD82E3D314
sha3_384: e25c6075a15106ff6c4ae5d26029b25a6d18ad3b81fbb11beaf224fd7ae1785524cbb956f38c1663a6c6dccd5c4da807
ep_bytes: e99bc8ffffcccccccccccccccccccccc
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

CXrep/MalGo-A also known as:

MicroWorld-eScanTrojan.GenericKDZ.79689
CylanceUnsafe
ZillyaTrojan.Shelma.Win64.6899
K7AntiVirusTrojan ( 0057cce41 )
K7GWTrojan ( 0057cce41 )
Cybereasonmalicious.0cdc76
ESET-NOD32a variant of WinGo/Rozena.AY
APEXMalicious
BitDefenderTrojan.GenericKDZ.79689
AvastWin64:Trojan-gen
RisingBackdoor.CobaltStrike!1.D9A1 (CLASSIC)
Ad-AwareTrojan.GenericKDZ.79689
SophosCXrep/MalGo-A
FireEyeGeneric.mg.578e9760cdc76dd6
EmsisoftTrojan.GenericKDZ.79689 (B)
SentinelOneStatic AI – Malicious PE
GDataTrojan.GenericKDZ.79689
AviraHEUR/AGEN.1145517
ArcabitTrojan.Generic.D13749
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
VBA32Trojan.Win64.Shelma
ALYacTrojan.GenericKDZ.79689
MAXmalware (ai score=88)
MalwarebytesTrojan.Downloader.GO
TencentMalware.Win32.Gencirc.11d7d8fa
IkarusTrojan.WinGo.Rozena
MaxSecureTrojan.Malware.300983.susgen
FortinetW64/Rozena.AQ!tr
AVGWin64:Trojan-gen

How to remove CXrep/MalGo-A?

CXrep/MalGo-A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment