Malware

Doina.13818 removal tips

Malware Removal

The Doina.13818 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Doina.13818 virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Doina.13818?



File Info:

name: E91981086EF707EC907F.mlw
path: /opt/CAPEv2/storage/binaries/fea4988b4fb95bdfaffbbcdb9b59bd0a8c503e3272105d29a664a1f184bfbb08
crc32: 036DC18E
md5: e91981086ef707ec907f3cc097c9396a
sha1: 648d769744329f2fdd82102ec7a0f4aadb28d2e8
sha256: fea4988b4fb95bdfaffbbcdb9b59bd0a8c503e3272105d29a664a1f184bfbb08
sha512: 965f7918acae8cb8afe3f2c7eb500e0b55425caee40f563040d3b4618000341a20e23aa9b1eaf23c59ac967d3c8a3f1044d034b00f3cf21f52a476adb2aa3e45
ssdeep: 12288:rqEBgr+KXNRgB5Few3avgjCpeRBWSxmESHRbEVeEXxTHfrM933A4uM888888888O:jg68NRgBreaacCqBWSxzzRU3/u
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F9056B23E291503BC026073A496BD66C9C3B7A202E965F576EF8CD4C3F396813D3A657
sha3_384: 66ec5bdecf8a4492079a4386d19a023f9681b3d6ea1ed8b0c6154c2e01040db760a6e6fc2e6ed91905c574f39b9a4a63
ep_bytes: 558becb9080000006a006a004975f953
timestamp: 2017-08-18 10:58:07


Version Info:

0: [No Data]

Doina.13818 also known as:

LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Doina.13818
FireEyeGeneric.mg.e91981086ef707ec
McAfeeArtemis!E91981086EF7
CylanceUnsafe
SangforTrojan.Win32.Wacatac.B
Cybereasonmalicious.86ef70
ArcabitTrojan.Doina.D35FA
BitDefenderThetaGen:NN.ZelphiF.34606.YOW@a0!gSLli
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
BitDefenderGen:Variant.Doina.13818
AvastWin32:Malware-gen
Ad-AwareGen:Variant.Doina.13818
EmsisoftGen:Variant.Doina.13818 (B)
McAfee-GW-EditionBehavesLike.Win32.Infected.ch
IkarusTrojan.Agent
MAXmalware (ai score=99)
MicrosoftTrojan:Win32/Ymacco.AAFE
GDataGen:Variant.Doina.13818
AhnLab-V3Malware/Win32.Generic.C2364065
ALYacGen:Variant.Doina.13818
MalwarebytesMachineLearning/Anomalous.95%
RisingTrojan.Bitrep!8.F596 (CLOUD)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
AVGWin32:Malware-gen
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_60% (W)

How to remove Doina.13818?

Doina.13818 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment