Malware

Dropped:Generic.Malware.SDg.99F29B7F (B) removal guide

Malware Removal

The Dropped:Generic.Malware.SDg.99F29B7F (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Dropped:Generic.Malware.SDg.99F29B7F (B) virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • A process created a hidden window
  • The binary contains an unknown PE section name indicative of packing
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Attempts to restart the guest VM
  • Creates a hidden or system file
  • Likely virus infection of existing system binary
  • Uses suspicious command line tools or Windows utilities

How to determine Dropped:Generic.Malware.SDg.99F29B7F (B)?



File Info:

name: 1B09A537F0780935D0B0.mlw
path: /opt/CAPEv2/storage/binaries/0a7437abcf60bf93d2203dd9b7475993f691af6811b444a78bbd348a9deb5962
crc32: 5CC9E384
md5: 1b09a537f0780935d0b076c23cd1ff84
sha1: 3079c185b99656c74a49f95c96f69272e1e993b6
sha256: 0a7437abcf60bf93d2203dd9b7475993f691af6811b444a78bbd348a9deb5962
sha512: f170f0ba70c9732030f1f6bd99894605aa4d7fc2e0a23939e5ca70dc150b600e8ae622cd2e15924d476b92476e80e7415c55448e42da360a2689f20f42fdf2cd
ssdeep: 768:A/uB8TdS/VL1sUd16JrrmGOsrMTG/N9GhzXtMunh47apqDBHI:iuBVpeesJryUrdOhzdPnuPH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T166732A61F7D34071E2390EF95C7ACD59943B7E203D33996E2AE8BA3D4C795818A0C693
sha3_384: 6f5e3ff8b7a0bd3276e73a7b4c0c4d88e0d0defd5c06e938a6cbf07886506412bf4676d90f81014a248b42842f0a2d8c
ep_bytes: 558bec81c48cf6ffff53565733c08985
timestamp: 2019-05-03 18:06:47


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Windows Spooler
FileVersion: 4.0.0.0
InternalName: Server
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: Server
ProductVersion: 4.0.0
Translation: 0x0409 0x04e4

Dropped:Generic.Malware.SDg.99F29B7F (B) also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanDropped:Generic.Malware.SDg.99F29B7F
FireEyeGeneric.mg.1b09a537f0780935
CAT-QuickHealTrojan.IgenericIH.S17463031
McAfeeGenericR-REN!1B09A537F078
CylanceUnsafe
K7AntiVirusTrojan ( 7000000f1 )
BitDefenderDropped:Generic.Malware.SDg.99F29B7F
K7GWTrojan ( 7000000f1 )
CrowdStrikewin/malicious_confidence_100% (D)
CyrenW32/Threat-SysVenFak-based!Maxi
ESET-NOD32a variant of Win32/Delf.UFI
KasperskyHEUR:Trojan.Win32.Fsysna.gen
RisingTrojan.Delf!8.67 (RDMK:cmRtazqcGLrIcUvqkHpZxkjiUMUb)
SophosGeneric ML PUA (PUA)
ComodoTrojWare.Win32.Spy.Banker.Gen@1qlojk
DrWebWin32.HLLW.Autoruner2.52229
ZillyaTrojan.Delf.Win32.132013
McAfee-GW-EditionGenericR-REN!1B09A537F078
EmsisoftDropped:Generic.Malware.SDg.99F29B7F (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.ehacx
AviraTR/Crypt.FKM.Gen
MAXmalware (ai score=89)
Antiy-AVLTrojan/Win32.Malex
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ZoneAlarmHEUR:Trojan.Win32.Fsysna.gen
GDataDropped:Generic.Malware.SDg.99F29B7F
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.R326963
BitDefenderThetaAI:Packer.5CF59C4F1C
ALYacDropped:Generic.Malware.SDg.99F29B7F
VBA32BScope.Trojan.Fsysna
MalwarebytesMalware.AI.681562963
PandaTrj/GdSda.A
TencentMalware.Win32.Gencirc.10cec305
YandexTrojan.GenAsa!Wkrw1vpUc6Y
IkarusTrojan.Win32.Delf
MaxSecureTrojan.Malware.7164915.susgen
FortinetW32/Delf.UFI!tr
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.7f0780
AvastWin32:TrojanX-gen [Trj]

How to remove Dropped:Generic.Malware.SDg.99F29B7F (B)?

Dropped:Generic.Malware.SDg.99F29B7F (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment