Malware

Exploit.MSWord.Generic information

Malware Removal

The Exploit.MSWord.Generic is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Exploit.MSWord.Generic virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Exploit.MSWord.Generic?



File Info:

crc32: A1D34214
md5: b7a3bd2a32940efeb84abf6807250dbd
name: update.exe
sha1: acc860b2f3c324709bb0df01fc354760169e4a49
sha256: a89aa6eabe7c5ff9cfd34a51fd3b3c4e1cee61f40b9c41a631432f91dd202f7a
sha512: c37c0d6165504c24c8778be338fb783d48670a2aae936b1294556843aab2db58f3883f258afbe29e73b18a2a7f636f828ef79b10c2b152b2b7b8d05566621633
ssdeep: 393216:aQYlNwEEIjt5pRXORIAXrRawI2pWQWP3MR:hYgsJRXORIAXdJIGWdUR
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName: Multiszolg Bt.                                              
Comments: This installation was built with Inno Setup.
ProductName: MBTNet                                                      
ProductVersion: 2.30                                              
FileDescription: MBTNet Setup                                                
Translation: 0x0000 0x04b0

Exploit.MSWord.Generic also known as:

Qihoo-360Generic/Trojan.Exploit.d08
McAfeeArtemis!B7A3BD2A3294
K7GWRiskware ( 0040eff71 )
K7AntiVirusRiskware ( 0040eff71 )
KasperskyHEUR:Exploit.MSWord.Generic
AlibabaRiskWare:Win32/WinVNC-based.965852c0
AegisLabHacktool.MSWord.Generic.3!c
McAfee-GW-EditionBehavesLike.Win32.AdwareFileTour.vc
ZoneAlarmHEUR:Exploit.MSWord.Generic
MicrosoftPUA:Win32/Presenoker
FortinetRiskware/WinVNC_based

How to remove Exploit.MSWord.Generic?

Exploit.MSWord.Generic removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment