The Doina.48214 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Doina.48214 virus can do?
File Info:
name: 21ED178E570625ACEACA.mlwpath: /opt/CAPEv2/storage/binaries/039aed840357c2f68a750f882fa07f10f1894ec186c160091fe4999cc06ca1fbcrc32: DFAEE919md5: 21ed178e570625aceaca5f6dc0b8aacbsha1: 249b09ca9bfd4ae089b9619021a83af8cada3cdesha256: 039aed840357c2f68a750f882fa07f10f1894ec186c160091fe4999cc06ca1fbsha512: e4e8b8fa02d9c88cffcafed097c25f84314a944bd23e57baf3745f3b3d6c62c25dad7ed3c1a038fd86023fbce6caeac7df29014ec7e979cdcfb48d93e5a03c7fssdeep: 12288:zMr/y90eXKX5r2BqUaHs9v0UEaCksPgXWGTQvhIzJJTuub3:4yQXQqUaHY0U/CkJDQvSzJxjjtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T135C40207E6EC4131F4B127706DF603D30A36BE605A74D29B124F6D6E1CB2674AA317A7sha3_384: f32457094dad4397133abed7375347fe36ff599c285ef652eefff7b403b542156eb5296818d9ac8ecbb69af1a18c3377ep_bytes: e8f0060000e9000000006a5868b87240timestamp: 2022-05-24 22:49:06Version Info:
CompanyName: Microsoft CorporationFileDescription: Самоизвлечение CAB-файлов Win32 FileVersion: 11.00.17763.1 (WinBuild.160101.0800)InternalName: Wextract LegalCopyright: © Корпорация Майкрософт. Все права защищены.OriginalFilename: WEXTRACT.EXE .MUIProductName: Internet ExplorerProductVersion: 11.00.17763.1Translation: 0x0419 0x04b0
Elastic | malicious (high confidence) |
Cynet | Malicious (score: 99) |
FireEye | Generic.mg.21ed178e570625ac |
CAT-QuickHeal | Trojan.MSIL |
McAfee | Artemis!9D0EA578124D |
VIPRE | Trojan.GenericKD.65331035 |
K7AntiVirus | Trojan-Downloader ( 0057994f1 ) |
K7GW | Trojan-Downloader ( 0057994f1 ) |
CrowdStrike | win/malicious_confidence_70% (W) |
Cyren | W32/KillAV.KMEF-6536 |
Symantec | ML.Attribute.HighConfidence |
ESET-NOD32 | multiple detections |
APEX | Malicious |
ClamAV | Win.Packed.Disabler-9987080-0 |
Kaspersky | UDS:Trojan.Win32.Agent.gen |
NANO-Antivirus | Trojan.Win32.Disabler.juxwlu |
SUPERAntiSpyware | Trojan.Agent/Gen-Crypt |
Avast | Win32:TrojanX-gen [Trj] |
Tencent | Trojan.MSIL.Agent.hg |
DrWeb | Trojan.Siggen19.32857 |
TrendMicro | Ransom.Win32.STOP.SMYXDBTB.hp |
SentinelOne | Static AI – Suspicious SFX |
Avira | TR/AD.Nekark.vtrdi |
Antiy-AVL | Trojan[Downloader]/Win32.Amadey |
Microsoft | Trojan:Script/Phonzy.A!ml |
Detected | |
ALYac | Gen:Variant.Doina.48214 |
TrendMicro-HouseCall | TROJ_GEN.R002C0PBQ23 |
Rising | Downloader.Amadey!8.125AC (TFE:5:HlAGNWrdXqP) |
Yandex | Trojan.Disabler!G6z7qDxyklM |
Ikarus | Trojan-Downloader.Win32.Amadey |
Fortinet | MSIL/Disabler.DR!tr |
AVG | Win32:TrojanX-gen [Trj] |
Cybereason | malicious.e57062 |
The MSIL/TrojanDropper.Agent.BVT is considered dangerous by lots of security experts. When this infection is active,…
The Generic.Dacic.94CCEEA9.A.A4A6DA47 is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.524217860 is considered dangerous by lots of security experts. When this infection is active,…
The Trojan:Win32/Koutodoor.F is considered dangerous by lots of security experts. When this infection is active,…
The Malware.AI.1412460714 is considered dangerous by lots of security experts. When this infection is active,…
The Generic.Dacic.8952383F.A.5EC8C34B is considered dangerous by lots of security experts. When this infection is active,…