Trojan

Dropped:Trojan.AgentWDCR.ERJ (B) removal guide

Malware Removal

The Dropped:Trojan.AgentWDCR.ERJ (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Dropped:Trojan.AgentWDCR.ERJ (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • CAPE detected the FloodFix malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Dropped:Trojan.AgentWDCR.ERJ (B)?



File Info:

name: 24A8DCFB30BA60AA0D2D.mlw
path: /opt/CAPEv2/storage/binaries/b6e39c0469a7bd569122127aa1a57fd4b266e18a95ee0efc3f018403ae342c49
crc32: 3550F9BA
md5: 24a8dcfb30ba60aa0d2db9b9410c54e1
sha1: 2d80f066a7ed88af50bc953e2d3711ccb3f385d1
sha256: b6e39c0469a7bd569122127aa1a57fd4b266e18a95ee0efc3f018403ae342c49
sha512: 94f2004a1a668d11cf272a28c04f06e5199d1eb37682590fb0ebff480315eec45bb8f57051059015d95663041fc7995ee2850ea269665b2e322c4b7a2c8e4171
ssdeep: 3072:+gXdZK5D3XJlGIC4VpTKypXYUJLbF2lQBV+UdE+rECWp7hK0+LpQ6:+eG5a4VpDNNJL1BV+UdvrEFp7hK0Gpj
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T187F3CE4622C08BEFE061C63330ADB6D899F18F3D15AB50568311798BEFBC95376846DB
sha3_384: 92caeff919cac37f6388e037638cb4db0024a3a2df52418beea6481d7445444ffcd4d710d240e766900753ce51bafe3b
ep_bytes: e841deffffc33c608bec83c52454e855
timestamp: 2009-12-05 22:50:52


Version Info:

Comments: Allows PotPlayer to be run from a removable drive.  For additional details, visit http://portableappz.blogspot.com
CompanyName: PortableAppZ.blogspot.com
FileDescription: PotPlayer Portable
FileVersion: 2018.12.12.23
InternalName: PotPlayer Portable
LegalCopyright: Bernat
LegalTrademarks: PortableAppZ is a Trademark of Bernat
OriginalFilename: PotPlayerPortable.exe
ProductName: PotPlayer Portable
ProductVersion: 2018.12.12.23
Translation: 0x0000 0x04e4

Dropped:Trojan.AgentWDCR.ERJ (B) also known as:

ElasticWindows.Virus.Floxif
DrWebWin32.FloodFix.7
MicroWorld-eScanDropped:Trojan.AgentWDCR.ERJ
ClamAVWin.Virus.Pioneer-9111434-0
CAT-QuickHealW32.Pioneer.CZ1
SkyhighBehavesLike.Win32.Suspicious.cc
McAfeeArtemis!24A8DCFB30BA
MalwarebytesGeneric.Malware.AI.DDS
SangforVirus.Win32.Save.Floxif
CrowdStrikewin/malicious_confidence_90% (W)
SymantecTrojan.Gen.6
ESET-NOD32Win32/Floxif.H
CynetMalicious (score: 100)
KasperskyVirus.Win32.Pioneer.cz
BitDefenderDropped:Trojan.AgentWDCR.ERJ
NANO-AntivirusVirus.Win32.Pioneer.bvrqhu
AvastWin32:FloxLib-A [Trj]
EmsisoftDropped:Trojan.AgentWDCR.ERJ (B)
F-SecureMalware.W32/Floxif.iici
VIPREDropped:Trojan.AgentWDCR.ERJ
TrendMicroTROJ_GEN.R03BC0DB824
FireEyeGeneric.mg.24a8dcfb30ba60aa
SophosW32/Floxif-G
SentinelOneStatic AI – Malicious PE
GDataWin32.Virus.Floxif.A
JiangminTrojan.Generic.eeffo
GoogleDetected
AviraW32/Floxif.iici
MAXmalware (ai score=88)
Antiy-AVLVirus/Win32.Floxif
Kingsoftmalware.kb.a.960
XcitiumVirus.Win32.Floxif.A@7h5wha
ArcabitTrojan.AgentWDCR.ERJ
ZoneAlarmVirus.Win32.Pioneer.cz
MicrosoftVirus:Win32/Floxif.H
VaristW32/Floxif.B
VBA32Virus.Win32.Floxif.h
ALYacDropped:Trojan.AgentWDCR.ERJ
Cylanceunsafe
PandaGeneric Suspicious
TrendMicro-HouseCallTROJ_GEN.R03BC0DB824
IkarusVirus.Win32.Floxif.A
FortinetW32/Floxif.E
AVGWin32:FloxLib-A [Trj]
Cybereasonmalicious.6a7ed8
DeepInstinctMALICIOUS

How to remove Dropped:Trojan.AgentWDCR.ERJ (B)?

Dropped:Trojan.AgentWDCR.ERJ (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment