Malware

Doina.60517 malicious file

Malware Removal

The Doina.60517 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Doina.60517 virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Authenticode signature is invalid

How to determine Doina.60517?



File Info:

name: 0FBF2F3A2D12C9EDAC0C.mlw
path: /opt/CAPEv2/storage/binaries/d64b5eddd665e98906ff78c5134d614a00dca366f7fafb7ac5adad7ab40a230b
crc32: BEDC4726
md5: 0fbf2f3a2d12c9edac0c83b03140bc00
sha1: c3b2fd4c23e6c17503948640b3cc528503487c73
sha256: d64b5eddd665e98906ff78c5134d614a00dca366f7fafb7ac5adad7ab40a230b
sha512: ab3e0ee32e5f47a26293210d63d7fc231b8a915c7321d1be32737e7a912cfaddd2e955a62dad288a42c2fc6b456e238989b1de1a279e309beb88b5b41526c0d2
ssdeep: 6144:lerJl0IhjHokvnsibKzRd80WLnKHMAOrlVNAUwo9MQpXEu4N/K+SJ2xn:8vhUk/sGKYBRzJ2xn
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T177D41916E548C437C0A59332D8DCE975003B3D7279F0C6861B50FADAFBB1A84BA53B96
sha3_384: 70b79bc916356670abd6b4b587dbf6212d7536f95730dd24739e9a447b934810ed15b75366eb285539fd48c4307b791d
ep_bytes: e801050000e97afeffff558bec832520
timestamp: 2023-07-15 07:50:25


Version Info:

CompanyName: JetBrains s.r.o.
FileDescription: GoLand
FileVersion: 2023.1.3.GO-231.9161.41
InternalName: goland64.exe
LegalCopyright: Copyright (C) 2017-2023 JetBrains s.r.o.
OriginalFilename: goland64.exe
ProductName: GoLand
ProductVersion: 2023.1.3.GO-231.9161.41
Translation: 0x0000 0xfde9

Doina.60517 also known as:

BkavW32.AIDetectMalware
MicroWorld-eScanGen:Variant.Doina.60517
McAfeeArtemis!0FBF2F3A2D12
VIPREGen:Variant.Doina.60517
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/TrojanDownloader.Agent.GYZ
KasperskyUDS:Trojan.Win32.Agent.gen
BitDefenderGen:Variant.Doina.60517
AvastWin32:DropperX-gen [Drp]
RisingDownloader.Agent!8.B23 (CLOUD)
EmsisoftGen:Variant.Doina.60517 (B)
F-SecureTrojan.TR/Dldr.Agent.cpfie
McAfee-GW-EditionArtemis!Trojan
FireEyeGen:Variant.Doina.60517
GDataGen:Variant.Doina.60517
GoogleDetected
AviraTR/Dldr.Agent.cpfie
MAXmalware (ai score=80)
ArcabitTrojan.Doina.DEC65
ZoneAlarmUDS:Trojan.Win32.Agent.gen
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 99)
ALYacGen:Variant.Doina.60517
PandaTrj/Genetic.gen
TencentWin32.Trojan-Downloader.Oader.Wimw
IkarusTrojan-Downloader.Win32.Agent
MaxSecureTrojan.Malware.300983.susgen
AVGWin32:DropperX-gen [Drp]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Doina.60517?

Doina.60517 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment