Generic.BrResMon.1.BFCFD028 information

The Generic.BrResMon.1.BFCFD028 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.BrResMon.1.BFCFD028 virus can do?

Executable code extraction
Creates RWX memory
A process created a hidden window
Unconventionial language used in binary resources: Indonesian
Uses Windows utilities for basic functionality
Attempts to delete volume shadow copies
Attempts to repeatedly call a single API many times in order to delay analysis time
Exhibits possible ransomware file modification behavior
Writes a potential ransom message to disk
Network activity detected but not expressed in API logs
Anomalous binary characteristics
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Generic.BrResMon.1.BFCFD028?


File Info:
crc32: 4AF406AD
md5: 4bc72c532c5c9f2f4b2a52dfdcc48aef
name: 4BC72C532C5C9F2F4B2A52DFDCC48AEF.mlw
sha1: 4a23551152121e7840fe67a28481b828b1656948
sha256: ce21375b99c84b1d6a4aef3f6d061c5c473ca7253b05d184f23d4ac807c21b95
sha512: ce12f6f1ee01bf7a2a36296ce4f2f6a2b44ecee6f9fc79d944a112e1bbf09d245f27c23c5d25748a468c26c6c4a73b70c12975b93b4ffc1d444c4e57d9a902fe
ssdeep: 3072:eTavHLRn16nYB6Tv0HR0VB+Hpu9nGucV5UNzcyxLZJ5m/KgWknEpCO65:Ht16nYB6T8HRqqjWcWJt+J5
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Generic.BrResMon.1.BFCFD028 also known as:

Bkav	W32.AIDetect.malware1
K7AntiVirus	Trojan ( 0053d8371 )
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Stealer.24403
Cynet	Malicious (score: 100)
ALYac	DeepScan:Generic.BrResMon.1.BFCFD028
Cylance	Unsafe
Zillya	Trojan.Chapak.Win32.12550
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_80% (D)
Alibaba	Trojan:Win32/Chapak.9271710e
K7GW	Trojan ( 0053d8371 )
Cybereason	malicious.32c5c9
Cyren	W32/Kryptik.KL.gen!Eldorado
ESET-NOD32	a variant of Win32/Kryptik.GLEF
APEX	Malicious
Avast	FileRepMetagen [Malware]
ClamAV	Win.Keylogger.Azorult-9846875-1
Kaspersky	Trojan.Win32.Chapak.awhw
BitDefender	DeepScan:Generic.BrResMon.1.BFCFD028
NANO-Antivirus	Trojan.Win32.Chapak.fiotqu
MicroWorld-eScan	DeepScan:Generic.BrResMon.1.BFCFD028
Tencent	Win32.Trojan.Chapak.Pgnf
Ad-Aware	DeepScan:Generic.BrResMon.1.BFCFD028
Sophos	ML/PE-A + Mal/GandCrab-G
Comodo	TrojWare.Win32.TrojanSpy.Ursnif.EM@7vyz23
BitDefenderTheta	Gen:NN.ZexaF.34126.oyW@aqySIqdG
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	Mal_HPGen-50
McAfee-GW-Edition	BehavesLike.Win32.Emotet.dh
FireEye	Generic.mg.4bc72c532c5c9f2f
Emsisoft	DeepScan:Generic.BrResMon.1.BFCFD028 (B)
SentinelOne	Static AI – Malicious PE
Avira	TR/Dropper.Gen
eGambit	Unsafe.AI_Score_99%
Microsoft	Trojan:Win32/Aptdrop.R
SUPERAntiSpyware	Ransom.GandCrab/Variant
GData	DeepScan:Generic.BrResMon.1.BFCFD028
AhnLab-V3	Trojan/Win32.Gandcrab.R239399
Acronis	suspicious
McAfee	Trojan-FQPW!4BC72C532C5C
VBA32	BScope.Trojan.Vigorf
Malwarebytes	Trojan.MalPack.GS
Panda	Trj/Genetic.gen
TrendMicro-HouseCall	Mal_HPGen-50
Rising	Trojan.Generic@ML.90 (RDML:B7sU2J+4LPatcG7rw0btqQ)
Yandex	Trojan.GenAsa!/Rx7ZjUahRo
Ikarus	Trojan-Ransom.Sodinokibi
MaxSecure	Ransomeware.GandCrypt.Gen
Fortinet	W32/Kryptik.GMSM!tr
AVG	FileRepMetagen [Malware]
Paloalto	generic.ml

How to remove Generic.BrResMon.1.BFCFD028?

Generic.BrResMon.1.BFCFD028 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Generic.BrResMon.1.BFCFD028 information