Categories: Malware

About “Exploit.cve20200796” infection

The Exploit.cve20200796 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Exploit.cve20200796 virus can do?

Executable code extraction
Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
A process attempted to delay the analysis task.
The binary likely contains encrypted or compressed data.
Anomalous binary characteristics

How to determine Exploit.cve20200796?


File Info:
crc32: 458AABE6md5: c346cb300e5db23f35dd40690516d781name: C346CB300E5DB23F35DD40690516D781.mlwsha1: 40aa03d2648093ea800edc84c30d7d3eba95901esha256: 9cecceda2564226555fff948d78fc1086bfd694085052df90d2fffbf21d09ca8sha512: a3660a8f476ff76f8f80ca7c7d100973f38eb775eb1ca958dc3081dee0e26b155caa246e6cd342c198a8e554c19988c756b03a9f73749050732c04b2070509cassdeep: 12288:+DPs8fisHaqa9irHYeiz37vQSA6jS+/onGl:+DVisHaqa0Ybz31AsStype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
Translation: 0x0346 0x093e

Exploit.cve20200796 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Adware ( 004ef1551 )
Elastic	malicious (high confidence)
DrWeb	Trojan.Encoder.24384
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.Chapak.ZZ5
ALYac	Trojan.BRMon.Gen.4
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_100% (D)
K7GW	Adware ( 004ef1551 )
Cybereason	malicious.00e5db
Symantec	Ransom.GandCrab
ESET-NOD32	a variant of Win32/Kryptik.GHQS
Zoner	Trojan.Win32.67497
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Trojan.BRMon.Gen.4
NANO-Antivirus	Trojan.Win32.GandCrypt.fdywpo
ViRobot	Trojan.Win32.GandCrab.362331
SUPERAntiSpyware	Ransom.GandCrab/Variant
MicroWorld-eScan	Trojan.BRMon.Gen.4
Tencent	Win32.Trojan.Scar.Swao
Ad-Aware	Trojan.BRMon.Gen.4
Sophos	Mal/Generic-R + Mal/GandCrab-B
Comodo	TrojWare.Win32.Cossta.CHA@7ozrpv
BitDefenderTheta	Gen:NN.ZexaF.34690.FyW@aan5ZIpO
TrendMicro	Mal_HPGen-37b
McAfee-GW-Edition	BehavesLike.Win32.TrojanAitInject.hc
FireEye	Generic.mg.c346cb300e5db23f
Emsisoft	Trojan.BRMon.Gen.4 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.GandCrypt.el
Avira	HEUR/AGEN.1121589
eGambit	Unsafe.AI_Score_98%
Antiy-AVL	Trojan/Generic.ASMalwS.2696DAC
Kingsoft	Win32.Troj.Undef.(kcloud)
Microsoft	Trojan:Win32/CryptInject.YY!MTB
AegisLab	Trojan.Multi.Generic.4!c
GData	Trojan.BRMon.Gen.4
AhnLab-V3	Win-Trojan/MalPe34.Suspicious.X2029
Acronis	suspicious
McAfee	GenericRXFT-RB!C346CB300E5D
VBA32	BScope.TrojanRansom.GandCrypt
Malwarebytes	Exploit.cve20200796
Panda	Trj/CI.A
TrendMicro-HouseCall	Mal_HPGen-37b
Rising	Trojan.Kryptik!8.8 (TFE:dGZlOgXOHxggrfz+yw)
Yandex	Trojan.GenAsa!5qVMDF261lg
Ikarus	Trojan-Dropper.Win32.Danabot
MaxSecure	Ransomeware.CRAB.gen
Fortinet	W32/Kryptik.GOGY!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml