Malware

What is “Dropped:Generic.Malware.SDg.99F29B7F”?

Malware Removal

The Dropped:Generic.Malware.SDg.99F29B7F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Dropped:Generic.Malware.SDg.99F29B7F virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • A process created a hidden window
  • The binary contains an unknown PE section name indicative of packing
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Creates a hidden or system file
  • Likely virus infection of existing system binary
  • Uses suspicious command line tools or Windows utilities

How to determine Dropped:Generic.Malware.SDg.99F29B7F?



File Info:

name: 95B6FD0CAF9D11ABF99D.mlw
path: /opt/CAPEv2/storage/binaries/5b9320e80b5eb66362f640af70f55ceb5c9a637393f9ce8b14344324b9bddb17
crc32: 53EBD93B
md5: 95b6fd0caf9d11abf99d3cce42b4a3da
sha1: 14b0483fa716f772298128f3e6e3e53af1317c6c
sha256: 5b9320e80b5eb66362f640af70f55ceb5c9a637393f9ce8b14344324b9bddb17
sha512: dce2006ef859953669bdc64ed06b83bba6918f69fef309fbcd98539a4238abf841400d9bffe12336622818d0ea38c9cd7c2717b23a82c7f4557fbfacea530738
ssdeep: 768:A/uB8TdS/VL1sUd16JrrmGOsrMTG/N9GhzXtMunh47apqDBHI:iuBVpeesJryUrdOhzdPnuPH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T141732A61F7D34071E2390EF95C7ACD59943B7E203D33996E2AE8BA3D4C795818A0C693
sha3_384: be2a5d09346e9a3d7484ac91c82beb3907c62288de4c426527618aef9cbaad8c3bfd2569250ac9be2f929396fe27c4d3
ep_bytes: 558bec81c48cf6ffff53565733c08985
timestamp: 2019-05-03 18:06:47


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Windows Spooler
FileVersion: 4.0.0.0
InternalName: Server
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: Server
ProductVersion: 4.0.0
Translation: 0x0409 0x04e4

Dropped:Generic.Malware.SDg.99F29B7F also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanDropped:Generic.Malware.SDg.99F29B7F
FireEyeGeneric.mg.95b6fd0caf9d11ab
CAT-QuickHealTrojan.IgenericIH.S17463031
ALYacDropped:Generic.Malware.SDg.99F29B7F
CylanceUnsafe
ZillyaTrojan.Delf.Win32.132013
K7AntiVirusTrojan ( 7000000f1 )
BitDefenderDropped:Generic.Malware.SDg.99F29B7F
K7GWTrojan ( 7000000f1 )
Cybereasonmalicious.caf9d1
BitDefenderThetaAI:Packer.5CF59C4F1C
CyrenW32/Threat-SysVenFak-based!Maxi
ESET-NOD32a variant of Win32/Delf.UFI
KasperskyHEUR:Trojan.Win32.Fsysna.gen
RisingTrojan.Delf!8.67 (RDMK:cmRtazqcGLrIcUvqkHpZxkjiUMUb)
SophosGeneric ML PUA (PUA)
ComodoTrojWare.Win32.Spy.Banker.Gen@1qlojk
DrWebWin32.HLLW.Autoruner2.52229
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericR-REN!95B6FD0CAF9D
EmsisoftDropped:Generic.Malware.SDg.99F29B7F (B)
IkarusTrojan.Win32.Delf
JiangminTrojan.Generic.ehacx
AviraTR/Crypt.FKM.Gen
MAXmalware (ai score=82)
Antiy-AVLTrojan/Generic.ASMalwS.2CA3B18
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataDropped:Generic.Malware.SDg.99F29B7F
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.RL_Generic.R326963
McAfeeGenericR-REN!95B6FD0CAF9D
VBA32BScope.Trojan.Fsysna
MalwarebytesMalware.AI.681562963
PandaTrj/GdSda.A
TencentMalware.Win32.Gencirc.10cec305
YandexTrojan.GenAsa!Wkrw1vpUc6Y
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_61%
FortinetW32/Delf.UFI!tr
AVGWin32:TrojanX-gen [Trj]
AvastWin32:TrojanX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (W)
MaxSecureTrojan.Malware.7164915.susgen

How to remove Dropped:Generic.Malware.SDg.99F29B7F?

Dropped:Generic.Malware.SDg.99F29B7F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment