What is "Generic.BrResMon.1.9FA606B5"?

The Generic.BrResMon.1.9FA606B5 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.BrResMon.1.9FA606B5 virus can do?

Executable code extraction
Creates RWX memory
HTTP traffic contains suspicious features which may be indicative of malware related traffic
Performs some HTTP requests
Unconventionial language used in binary resources: Albanian
The binary likely contains encrypted or compressed data.
Attempts to repeatedly call a single API many times in order to delay analysis time
Collects information to fingerprint the system

Related domains:

z.whorecord.xyz

a.tomx.xyz

crazermess.top.cp-in-3.webhostbox.net

How to determine Generic.BrResMon.1.9FA606B5?


File Info:
crc32: 29B9DE79
md5: 6ded4ac1b77f79abddbc44f03b40247d
name: 6DED4AC1B77F79ABDDBC44F03B40247D.mlw
sha1: 7b3a0d00e88e7cfb22d42888d8ae724ad8b334f5
sha256: a8db56ec906e01b4099860bf1273e675b311837b38b4fbf6ca68fa83523001ea
sha512: 136dc25e0da11d51bc964f6a18e60af98878c7b90489d2fd7e77b9e534b2aba1e29ae6f78cdefcbef3f52521e584b34eac8631172f6fa0f373a080f625ae49c0
ssdeep: 3072:JlcqayGlHsF5MwRLkad7coFQXccGvo0B7OHxzeaVadBNUoF:JlVMXwWaZZq4voZzeamd
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Generic.BrResMon.1.9FA606B5 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 00516fdf1 )
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Stealer.23869
Cynet	Malicious (score: 100)
ALYac	DeepScan:Generic.BrResMon.1.9FA606B5
Cylance	Unsafe
Zillya	Trojan.GenericKD.Win32.164360
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Alibaba	TrojanPSW:Win32/Coins.97ed1903
K7GW	Trojan ( 00516fdf1 )
Cybereason	malicious.1b77f7
Symantec	Trojan Horse
ESET-NOD32	a variant of Win32/Kryptik.GKBE
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan-PSW.Win32.Coins.huf
BitDefender	DeepScan:Generic.BrResMon.1.9FA606B5
NANO-Antivirus	Trojan.Win32.Kryptik.fgwvyh
MicroWorld-eScan	DeepScan:Generic.BrResMon.1.9FA606B5
Tencent	Win32.Trojan-qqpass.Qqrob.Wtyb
Ad-Aware	DeepScan:Generic.BrResMon.1.9FA606B5
Sophos	Mal/Generic-R + Mal/GandCrab-G
Comodo	TrojWare.Win32.PSW.Coins.KA@7tbl0j
BitDefenderTheta	Gen:NN.ZexaF.34738.nuW@a8y5h8iG
TrendMicro	TROJ_FRS.VSN15H18
McAfee-GW-Edition	BehavesLike.Win32.MultiPlug.dh
FireEye	Generic.mg.6ded4ac1b77f79ab
Emsisoft	DeepScan:Generic.BrResMon.1.9FA606B5 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.PSW.Coins.auh
Avira	HEUR/AGEN.1119073
eGambit	Unsafe.AI_Score_99%
Antiy-AVL	Trojan/Generic.ASMalwS.27D3392
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
Microsoft	Trojan:Win32/Occamy.C
AegisLab	Trojan.Win32.Coins.i!c
ZoneAlarm	Trojan-PSW.Win32.Coins.huf
GData	Win32.Trojan-Ransom.GandCrab.N
AhnLab-V3	Win-Trojan/Gandcrab08.Exp
Acronis	suspicious
McAfee	Trojan-FPYT!6DED4AC1B77F
VBA32	BScope.Trojan.Vigorf
Malwarebytes	Malware.AI.820234642
Panda	Trj/GdSda.A
TrendMicro-HouseCall	TROJ_FRS.VSN15H18
Rising	Trojan.Kryptik!1.B5F8 (CLASSIC)
Yandex	Trojan.GenAsa!BZmnrXP5JXI
Ikarus	Trojan.Crypt
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Kryptik.GKJF!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Generic.BrResMon.1.9FA606B5?

Generic.BrResMon.1.9FA606B5 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Generic.BrResMon.1.9FA606B5”?