Backdoor

What is “Generic.Dacic.1.Backdoor.Hangup.A.E20AD017”?

Malware Removal

The Generic.Dacic.1.Backdoor.Hangup.A.E20AD017 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Dacic.1.Backdoor.Hangup.A.E20AD017 virus can do?

  • Sample contains Overlay data
  • Creates an indicator observed in Territorial Disputes report SIG40
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Generic.Dacic.1.Backdoor.Hangup.A.E20AD017?



File Info:

name: DAD67C461B7A292F01A6.mlw
path: /opt/CAPEv2/storage/binaries/781e827a45c853c3e3c37b3d5ef8cdd7e682895d2f2996d264ab943dc3c58899
crc32: 1437C13D
md5: dad67c461b7a292f01a6a8bb1f3882c3
sha1: a1c9e330049a5b244e60f717115711e7c91637df
sha256: 781e827a45c853c3e3c37b3d5ef8cdd7e682895d2f2996d264ab943dc3c58899
sha512: 99409399b0a783638e5c5c29963133c7ef8f04d28d6bcda277341c654bfff99252d0f36a347afdaa935a1f169ae91517d87cb85b2af6a2185548c1ad5e947285
ssdeep: 3072:2uuyog9SNB4+r99YVAPgxed6BYudlNPMAvAURfE+Hxgu+tAcrbFAJc+RsUi1aVDH:2uaBTrsIyedZwlNPjLs+H8rtMs4
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16E34377DFBB80B71C76A2276276B09A2D738C45C0F5840F3D238C79A5A36890C5F6B65
sha3_384: 3251a58d83684d8af3e1e331377a6e707f87f9bb22f4ea1ff27f56bd2b776d81bd675d6a07aa096f693508f006b0f802
ep_bytes: 909090609090b80010400090bb6c8f40
timestamp: 2018-07-09 22:06:51


Version Info:

0: [No Data]

Generic.Dacic.1.Backdoor.Hangup.A.E20AD017 also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017
ClamAVWin.Trojan.Crypted-29
FireEyeGeneric.mg.dad67c461b7a292f
CAT-QuickHealBackdoor.Berbew.A6.MUE
McAfeeGenericRXVP-YB!DAD67C461B7A
MalwarebytesGeneric.Malware.AI.DDS
VIPREGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 005780dd1 )
K7GWTrojan ( 005780dd1 )
Cybereasonmalicious.61b7a2
BaiduWin32.Trojan-Spy.Quart.a
VirITWorm.Win32.Berbew.G
CyrenW32/Padodor.F.gen!Eldorado
SymantecBackdoor.Berbew.F
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Padodor.NAX
APEXMalicious
CynetMalicious (score: 100)
KasperskyTrojan-Proxy.Win32.Qukart.gen
BitDefenderGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017
NANO-AntivirusTrojan.Win32.Qukart.fokxzm
AvastWin32:TrojanX-gen [Trj]
TencentTrojan.Win32.Qukart.ya
TACHYONBackdoor/W32.Padodor
SophosTroj/Padodo-Fam
F-SecureTrojan.TR/Crypt.XDR.Gen
DrWebBackDoor.HangUp.43791
ZillyaTrojan.Qukart.Win32.1042082
McAfee-GW-EditionBehavesLike.Win32.Backdoor.dc
Trapminemalicious.high.ml.score
EmsisoftGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017 (B)
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.11RRK8R
JiangminTrojan.Generic.dzrgt
AviraTR/Crypt.XDR.Gen
Antiy-AVLTrojan[Proxy]/Win32.Qukart.gen
ArcabitGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017
ZoneAlarmTrojan-Proxy.Win32.Qukart.gen
MicrosoftBackdoor:Win32/Berbew.AA!MTB
GoogleDetected
AhnLab-V3Win-Trojan/Berbew.51712
VBA32BScope.Backdoor.Berbew
ALYacGeneric.Dacic.1.Backdoor.Hangup.A.E20AD017
MAXmalware (ai score=82)
Cylanceunsafe
PandaTrj/Genetic.gen
RisingBackdoor.Berbew!1.AE0A (CLASSIC)
YandexTrojan.PR.Qukart!MRIP3jtd7Kk
IkarusTrojan-Spy.Win32.Qukart
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/GenKryptik.BJQV!tr
BitDefenderThetaAI:Packer.2B8D4C3B21
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Generic.Dacic.1.Backdoor.Hangup.A.E20AD017?

Generic.Dacic.1.Backdoor.Hangup.A.E20AD017 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment