Categories: Malware

Exploit.Win32.BypassUAC.nvd information

The Exploit.Win32.BypassUAC.nvd is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Exploit.Win32.BypassUAC.nvd virus can do?

Executable code extraction
Creates RWX memory
Reads data out of its own binary image
Drops a binary and executes it
Unconventionial language used in binary resources: Chinese (Simplified)

Related domains:

up.j5674t.club

rk.j5674t.club

How to determine Exploit.Win32.BypassUAC.nvd?


File Info:
crc32: BC20E406md5: de0499d275369aec1b5fbe3748ff994cname: DE0499D275369AEC1B5FBE3748FF994C.mlwsha1: 6b726bb7f3e154e2d40d2b4c4d8e0116a9f54c5esha256: 215af81d5bffbbc398bbb88715f8c259153763cd84013dba23955f5e8038793dsha512: 2c95cb1156f01099d05747887cc6fbf64f351305643b322c9aa26f7cd56efb1431ebcabda518cf43d8c97213cc23c20ae67f5784e4dee223f4f8f6932ab786e8ssdeep: 6144:MrojxmvpSjo6KCD4SLNdcrvUL11Nup7RGv7qwoSavQ9G/JRt7g0g:vjxmvpO5KC1Qcc7G2ZtiGxYtype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
LegalCopyright:                                                                                                     FileVersion:                     CompanyName: 39072                                                       Comments: This installation was built with Inno Setup.ProductName: 39072                                                       ProductVersion: 1.0.0.3             FileDescription: 39072 Setup                                                 Translation: 0x0000 0x04b0

Exploit.Win32.BypassUAC.nvd also known as:

K7AntiVirus	Trojan-Downloader ( 0001e3c01 )
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader26.58215
Cynet	Malicious (score: 99)
Cylance	Unsafe
Zillya	Exploit.BypassUAC.Win32.1734
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanDownloader:Win32/BypassUAC.71653c22
K7GW	Trojan-Downloader ( 0001e3c01 )
Cybereason	malicious.7f3e15
Cyren	W32/Agent.ARX.gen!Eldorado
Symantec	Trojan.Gen.MBT
ESET-NOD32	a variant of Win32/TrojanDownloader.Agent.EBX
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Exploit.Win32.BypassUAC.nvd
NANO-Antivirus	Trojan.Win32.Dwn.fgjpql
Tencent	Win32.Exploit.Bypassuac.Wrqa
Sophos	Mal/Generic-S
Comodo	Malware@#1uxc02z7djgpg
McAfee-GW-Edition	PUP-GZR
SentinelOne	Static AI – Suspicious PE
Avira	HEUR/AGEN.1124690
Microsoft	Trojan:Win32/Skeeyah.A!rfn
AhnLab-V3	Malware/Win32.Generic.C2622008
McAfee	PUP-GZR
MAX	malware (ai score=99)
Panda	Trj/CI.A
Yandex	Exploit.BypassUAC!H3OXa9fk9sU
Ikarus	Trojan.Downloader.Inno.Agent
Fortinet	W32/Agent.EBX!tr.dldr
AVG	Win32:Malware-gen
Paloalto	generic.ml