Backdoor

Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469 removal guide

Malware Removal

The Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469 virus can do?

  • Sample contains Overlay data
  • Creates an indicator observed in Territorial Disputes report SIG40
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469?


File Info:

name: C3BB13894316BA2D9379.mlw
path: /opt/CAPEv2/storage/binaries/395957c532ed3f734fc714b5b659086589ad144111304a894925eb06881fc13d
crc32: 2F0C929C
md5: c3bb13894316ba2d937937228bd02dfc
sha1: 6277abebd231e7ec5fb7565d8fdbab1019ae6386
sha256: 395957c532ed3f734fc714b5b659086589ad144111304a894925eb06881fc13d
sha512: 77179eb94bd3fa75b4115fb1987b8c7d1f80522c37bf687e895e26deaf65ea850d711ef4ede5ed30db418d6888e4c2301280a752aa08f1acbd789c0938a9f51f
ssdeep: 3072:wo2+3mvvjZW5pFJXO4sOBiMG7+AURfE+HrkeJ:p2lzYXFQ0oMG7Gs+HoU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10E045BBAF7AE1FE2F738017212F21985E278C4E9CEFB85446514F14802B7AD4957DAB0
sha3_384: bb93bc717a783700d934c431195d4495a716669cedccee495b090e47e15a9fddce1771a90b09e3b1aed9f05691a3a792
ep_bytes: 90609090909090b800104000bb6c8f40
timestamp: 2017-02-24 22:06:51

Version Info:

0: [No Data]

Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469 also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469
CAT-QuickHealBackdoor.Berbew.A6.MUE
McAfeeTrojan-FVOJ!C3BB13894316
MalwarebytesGeneric.Malware.AI.DDS
ZillyaTrojan.Qukart.Win32.1042082
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 005780dd1 )
K7GWTrojan ( 005780dd1 )
Cybereasonmalicious.bd231e
BaiduWin32.Trojan-Spy.Quart.a
VirITWorm.Win32.Berbew.G
CyrenW32/Padodor.F.gen!Eldorado
SymantecBackdoor.Berbew.F
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Padodor.NAX
APEXMalicious
ClamAVWin.Trojan.Crypted-30
KasperskyTrojan-Proxy.Win32.Qukart.gen
BitDefenderGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469
NANO-AntivirusTrojan.Win32.Qukart.fokxzm
AvastWin32:TrojanX-gen [Trj]
TencentTrojan-Ransom.Win32.Pornoasset.a
EmsisoftGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469 (B)
F-SecureTrojan.TR/Crypt.XDR.Gen
DrWebBackDoor.HangUp.43791
VIPREGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469
McAfee-GW-EditionBehavesLike.Win32.Backdoor.ch
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.c3bb13894316ba2d
SophosTroj/Padodo-Fam
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.11RRK8R
JiangminTrojan.Generic.dzrgt
GoogleDetected
AviraTR/Crypt.XDR.Gen
MAXmalware (ai score=81)
Antiy-AVLTrojan[Proxy]/Win32.Qukart.gen
ArcabitGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469
ZoneAlarmTrojan-Proxy.Win32.Qukart.gen
MicrosoftBackdoor:Win32/Berbew.AA!MTB
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/Berbew.51712
Acronissuspicious
BitDefenderThetaAI:Packer.C1F0D5F821
ALYacGeneric.Dacic.1.Backdoor.Hangup.A.B5BA2469
TACHYONBackdoor/W32.Padodor
VBA32BScope.Backdoor.Berbew
Cylanceunsafe
PandaTrj/Genetic.gen
RisingBackdoor.Berbew!1.AE0A (CLASSIC)
IkarusTrojan.Crypt
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Qukart.A!tr
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469?

Generic.Dacic.1.Backdoor.Hangup.A.B5BA2469 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment