Malware

Downloader.DStudio removal guide

Malware Removal

The Downloader.DStudio is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Downloader.DStudio virus can do?

  • Presents an Authenticode digital signature
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Downloader.DStudio?



File Info:

name: 0891C66B85A272ADB32E.mlw
path: /opt/CAPEv2/storage/binaries/67d408c61993e2f4f0a3ddc386d8e738f57a7672b47b60edc4ea86973408cc32
crc32: 98460699
md5: 0891c66b85a272adb32e0e56baac0cda
sha1: 94e2ce18a2342458861923bc3c95a46a897e1cb8
sha256: 67d408c61993e2f4f0a3ddc386d8e738f57a7672b47b60edc4ea86973408cc32
sha512: 7f8c27a173df2b5438230b54622469253a8813345dc46514fa3819cd09e0fe59b7e716a5403315f03b2ccdc726ef7cb0402a6df3bee3c0701b798038e8306662
ssdeep: 98304:iN+6DG2leNlau3jJdm2N5JnxVPI4YDJq:ivG2lepLNnxID
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EAF578012E7D8426F462463D096CA577C57BBFDCBB2F46A722B0663B2B337805529732
sha3_384: 020a8fad13df0a1565913f73695339cb163895a8200af25875b86b1b951b59194675950276e25fc05c2c3152a59337dc
ep_bytes: 81ecd40200005356576a205f33db6801
timestamp: 2021-07-24 22:22:34


Version Info:

CompanyName: Download Studio Project
FileDescription: Download Studio Setup
FileVersion: 1.17.0.0
LegalCopyright: 2021 (c) Download Studio Project
ProductName: Download Studio
ProductVersion: 1.17.0.0
Translation: 0x04b0 0x04b0

Downloader.DStudio also known as:

BkavW32.AIDetect.malware1
DrWebAdware.Downware.19985
MicroWorld-eScanAdware.GenericKD.47395230
ALYacAdware.GenericKD.47395230
MalwarebytesPUP.Optional.DStudio
K7GWAdware ( 00588e371 )
K7AntiVirusAdware ( 00588e371 )
ESET-NOD32Win32/Downloader.DownloadStudio.A potentially unwanted
APEXMalicious
ClamAVWin.Trojan.Generic-9907441-0
BitDefenderAdware.GenericKD.47395230
Ad-AwareAdware.GenericKD.47395230
EmsisoftApplication.Downloader (A)
McAfee-GW-EditionDStudio-IFA
FireEyeAdware.GenericKD.47395230
GDataAdware.GenericKD.47395230
MAXmalware (ai score=65)
Antiy-AVLTrojan/Generic.ASMalwS.312E8D1
ArcabitAdware.Generic.D2D3319E
CynetMalicious (score: 100)
AhnLab-V3PUP/Win.Generic.R447032
McAfeeDStudio-IFA
VBA32Downloader.DStudio
TencentTrojan.Win32.BitCoinMiner.la
FortinetAdware/DStudio

How to remove Downloader.DStudio?

Downloader.DStudio removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment