Categories: Malware

Generic.BrResMon.1.9C6C181D removal guide

The Generic.BrResMon.1.9C6C181D is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.BrResMon.1.9C6C181D virus can do?

Executable code extraction
Attempts to connect to a dead IP:Port (1 unique times)
Creates RWX memory
Possible date expiration check, exits too soon after checking local time
Unconventionial language used in binary resources: Indonesian
The binary likely contains encrypted or compressed data.
Attempts to repeatedly call a single API many times in order to delay analysis time
Collects information to fingerprint the system
Anomalous binary characteristics

Related domains:

nagoyashi.chimkent.su

How to determine Generic.BrResMon.1.9C6C181D?


File Info:
crc32: D4CCFEE7md5: a528574dee251b3c19d8442b3fbc3741name: A528574DEE251B3C19D8442B3FBC3741.mlwsha1: 1e26722c4684c7ebbfc091ca1f5c054fe2cc530asha256: ab98611610d7d186a2de1ec046ef97287bd588a457dd76d6cf8f40a6aadea432sha512: e85e26c399b6155e3d130b762117b8f6d6bc2c074542421e509e351fa69debdfca2c2ae73650cd428a070518a50d6e40f0761a921b1159dfd418be207ab7dca8ssdeep: 3072:m8vWyGfSxadQy9xpLUeuxrKp5vqCOpqMVcscJ2pymYNZxOtTV+RRtwVGdW+QJ:0yGfwaSyjFUeuIepzKNKtTVkw4YbJtype: PE32 executable (GUI) Intel 80386, for MS Windows
Version Info:
0: [No Data]

Generic.BrResMon.1.9C6C181D also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 0053d8371 )
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Stealer.24403
Cynet	Malicious (score: 100)
ALYac	Trojan.Agent.CoinStealer
Cylance	Unsafe
Zillya	Trojan.Coins.Win32.1225
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_90% (D)
Alibaba	TrojanPSW:Win32/Coins.df492184
K7GW	Trojan ( 0053d8371 )
Cybereason	malicious.dee251
Cyren	W32/Kryptik.KL.gen!Eldorado
Symantec	Packed.Generic.525
ESET-NOD32	a variant of Win32/Kryptik.GLEF
APEX	Malicious
Avast	Win32:RansomX-gen [Ransom]
ClamAV	Win.Keylogger.Azorult-9846875-1
Kaspersky	Trojan-PSW.Win32.Coins.lud
BitDefender	DeepScan:Generic.BrResMon.1.9C6C181D
NANO-Antivirus	Trojan.Win32.Stealer.fikbfu
SUPERAntiSpyware	Ransom.GandCrab/Variant
MicroWorld-eScan	DeepScan:Generic.BrResMon.1.9C6C181D
Ad-Aware	DeepScan:Generic.BrResMon.1.9C6C181D
Sophos	Mal/Generic-S + Mal/GandCrab-G
Comodo	TrojWare.Win32.TrojanSpy.Ursnif.EM@7vyz23
BitDefenderTheta	Gen:NN.ZexaF.34744.ryW@aafJc0gG
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Mal_HPGen-50
McAfee-GW-Edition	BehavesLike.Win32.Generic.dc
FireEye	Generic.mg.a528574dee251b3c
Emsisoft	DeepScan:Generic.BrResMon.1.9C6C181D (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.PSW.Coins.bnf
Avira	HEUR/AGEN.1106533
Antiy-AVL	Trojan/Generic.ASMalwS.282B158
Microsoft	Trojan:Win32/Aptdrop.R
Arcabit	DeepScan:Generic.BrResMon.1.9C6C181D
AegisLab	Trojan.Win32.Coins.4!c
GData	DeepScan:Generic.BrResMon.1.9C6C181D
AhnLab-V3	Trojan/Win32.Gandcrab.R239399
Acronis	suspicious
McAfee	Trojan-FQPW!A528574DEE25
MAX	malware (ai score=99)
VBA32	BScope.Trojan.Vigorf
Panda	Trj/GdSda.A
TrendMicro-HouseCall	Mal_HPGen-50
Rising	Trojan.Generic@ML.100 (RDML:Y0yrSUNT3fOa2gj4CGPIyA)
Yandex	Trojan.GenAsa!07LfVz8MzyA
Ikarus	Trojan-Ransom.Sodinokibi
MaxSecure	Ransomeware.GandCrypt.Gen
Fortinet	W32/Kryptik.GMSM!tr
AVG	Win32:RansomX-gen [Ransom]
Paloalto	generic.ml