Categories: Malware

Dropped:Generic.Malware.S!hid!.45C73E74 removal guide

The Dropped:Generic.Malware.S!hid!.45C73E74 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Dropped:Generic.Malware.S!hid!.45C73E74 virus can do?

Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
Performs some HTTP requests
Unconventionial language used in binary resources: Polish
Attempts to repeatedly call a single API many times in order to delay analysis time
Installs itself for autorun at Windows startup
Attempts to modify proxy settings
Creates a copy of itself
The sample wrote data to the system hosts file.

Related domains:

z.whorecord.xyz

a.tomx.xyz

www.dialer.pl

How to determine Dropped:Generic.Malware.S!hid!.45C73E74?


File Info:
crc32: 0D60CC9Dmd5: 3f67c71dbe0a7a4c77823d0973634ab1name: 3F67C71DBE0A7A4C77823D0973634AB1.mlwsha1: c8d49eb2b61b676fa47e8b198ce9457420dc2ba3sha256: fcc3d590ec8447fa544702b55a7fff892df3fa68b1b26af97fd39fd9bb14bcafsha512: 6b42f73f5bfeddf83a5cc5fd0874df11e53285a6b2d76294712443f47222b9b5b936b92031b48737caf6e17688a0d03838db4e831bb0ef2f6d006c6c20135c02ssdeep: 3072:nrD4MI6mNHDMqnYfbq+8auM3MXvwyS5Hb:rRtinYfbq+8a13MXvpStype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
0: [No Data]

Dropped:Generic.Malware.S!hid!.45C73E74 also known as:

K7AntiVirus	Trojan ( 7000000f1 )
Lionic	Trojan.Win32.Scar.4!c
DrWeb	Trojan.Siggen.62411
Cynet	Malicious (score: 100)
ALYac	Dropped:Generic.Malware.S!hid!.45C73E74
Cylance	Unsafe
Zillya	Dialer.MMDial.Win32.7
Alibaba	Trojan:Win32/Malex.e349b2a9
K7GW	Trojan ( 7000000f1 )
Cybereason	malicious.2b61b6
Cyren	W32/Blocker-based!Maximus
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Dialer.MMDial.A
APEX	Malicious
Avast	Win32:Dh-A [Heur]
Kaspersky	Trojan.Win32.Scar.mvv
BitDefender	Dropped:Generic.Malware.S!hid!.45C73E74
NANO-Antivirus	Trojan.Win32.Scar.bpawtl
MicroWorld-eScan	Dropped:Generic.Malware.S!hid!.45C73E74
Tencent	Win32.Trojan.Scar.Lmux
Ad-Aware	Dropped:Generic.Malware.S!hid!.45C73E74
Sophos	Generic ML PUA (PUA)
Comodo	TrojWare.Win32.Scar.~dy013@215pr5
BitDefenderTheta	Gen:NN.ZelphiF.34110.iGW@ay3D5WoG
VIPRE	Trojan.Win32.Generic.pak!cobra
McAfee-GW-Edition	GenericRXGU-TP!3F67C71DBE0A
FireEye	Generic.mg.3f67c71dbe0a7a4c
Emsisoft	Dropped:Generic.Malware.S!hid!.45C73E74 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan/Scar.yaz
Avira	DIAL/Dialer.Gen2
eGambit	Generic.Malware
Antiy-AVL	Trojan/Generic.ASMalwS.1F7BD
Microsoft	Trojan:Win32/Malex.gen!J
Arcabit	Generic.Malware.S!hid!.45C73E74
GData	Dropped:Generic.Malware.S!hid!.45C73E74
AhnLab-V3	Adware/Win32.Dialer.R63502
McAfee	GenericRXGU-TP!3F67C71DBE0A
MAX	malware (ai score=100)
VBA32	BScope.Trojan.MulDrop
Panda	Dialer.Gen
Rising	Trojan.Generic@ML.80 (RDML:CKKF9JltG9WsXY53faR7XQ)
Yandex	Trojan.GenAsa!vhW0BW6GnSQ
Ikarus	Trojan.Win32.Dialer
MaxSecure	Trojan.Malware.7164915.susgen
Fortinet	W32/Scar.MVV!tr
AVG	Win32:Dh-A [Heur]