Dropped:Application.Generic.3002907 malicious file

The Dropped:Application.Generic.3002907 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Dropped:Application.Generic.3002907 virus can do?

Executable code extraction
Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
Reads data out of its own binary image
Drops a binary and executes it
Uses Windows utilities for basic functionality
Sniffs keystrokes
Installs itself for autorun at Windows startup
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

kaneki.selfip.net

How to determine Dropped:Application.Generic.3002907?


File Info:
crc32: 10DCEA71
md5: 125e09beac8ca0150979deb5d64f9058
name: 125E09BEAC8CA0150979DEB5D64F9058.mlw
sha1: c801d0aeab0222dc2c9e15e7e7be1dd682d8d69d
sha256: 728fc6a2dba38cdd3aafd113be24c8aa7133967e849308bc254b16f47ce34791
sha512: 37f03523f66bb270d2163609f3bfc4996c3607a85ebc507461e35bb837335e3ffef189d5a296397dca207bb11fd6c6af199ebd1133a09b52818b8db82e6b4bb7
ssdeep: 24576:Pz1I9YOrVQ4bznGcSqMYGPLGaz/d//8RrPjVQrE2xE0:PzmuOhXnX6YEGaz/J/8RrRQrEy
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:
0: [No Data]

Dropped:Application.Generic.3002907 also known as:

K7AntiVirus	Unwanted-Program ( 004d38111 )
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader24.63359
Cynet	Malicious (score: 100)
CAT-QuickHeal	PUA.KeygenPMF.S13319306
ALYac	Dropped:Application.Generic.3002907
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_60% (D)
K7GW	Unwanted-Program ( 004d38111 )
Cybereason	malicious.eac8ca
Cyren	W32/Trojan.FMB.gen!Eldorado
Symantec	Backdoor.Ratenjay
ESET-NOD32	multiple detections
Zoner	Trojan.Win32.48371
APEX	Malicious
Avast	Win32:GenMaliciousA-UXZ [Trj]
ClamAV	Win.Trojan.Emotet-6428938-0
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Dropped:Application.Generic.3002907
NANO-Antivirus	Trojan.Win32.Bladabindi.eppbpl
MicroWorld-eScan	Dropped:Application.Generic.3002907
Tencent	Win32.Trojan.Spy.Dvqc
Ad-Aware	Dropped:Application.Generic.3002907
Sophos	Generic Reputation PUA (PUA)
Comodo	Malware@#aqskabsqp604
F-Secure	Heuristic.HEUR/AGEN.1112182
BitDefenderTheta	Gen:NN.ZexaF.34236.1qW@a8uqJNpe
VIPRE	HackTool.Win32.Keygen
TrendMicro	PUA.Win32.KeyGen.CRRM
McAfee-GW-Edition	Generic.bbx
FireEye	Generic.mg.125e09beac8ca015
Emsisoft	Dropped:Application.Generic.3002907 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Generic.bbbgw
Webroot	W32.Trojan.Gen
Avira	HEUR/AGEN.1112182
Antiy-AVL	Trojan/Win32.TSGeneric
Kingsoft	Win32.Troj.Agent.ao.(kcloud)
Microsoft	HackTool:Win32/Keygen
Arcabit	Application.Generic.D2DD21B
SUPERAntiSpyware	Hack.Tool/Gen-Crack
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Dropped:Application.Generic.3002907
AhnLab-V3	Trojan/Win32.Ratenjay.C956267
McAfee	Artemis!125E09BEAC8C
MAX	malware (ai score=100)
VBA32	Trojan.Downloader
Malwarebytes	RiskWare.Agent
Panda	Trj/CI.A
TrendMicro-HouseCall	PUA.Win32.KeyGen.CRRM
Rising	Trojan.Generic@ML.100 (RDMK:nVSuHaXk3ZP17N823tNCKQ)
Yandex	Trojan.Igent.bUAS7g.38
Ikarus	Trojan.MSIL.Injector
Fortinet	Riskware/Keygen_OX
AVG	Win32:GenMaliciousA-UXZ [Trj]
Paloalto	generic.ml

How to remove Dropped:Application.Generic.3002907?

Dropped:Application.Generic.3002907 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Dropped:Application.Generic.3002907 malicious file