Generic.Dacic.94CCEEA9.A.807F495F removal

The Generic.Dacic.94CCEEA9.A.807F495F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generic.Dacic.94CCEEA9.A.807F495F virus can do?

Sample contains Overlay data
Unconventionial binary language: Chinese (Simplified)
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid
Anomalous binary characteristics

How to determine Generic.Dacic.94CCEEA9.A.807F495F?


File Info:
name: 5BA72DB77A28F08EC512.mlw
path: /opt/CAPEv2/storage/binaries/d7403586bcf0798e029e91d58e329035532981a6697fa9c927b109edff7d8703
crc32: 5F50663D
md5: 5ba72db77a28f08ec512636b91fb99cb
sha1: c8d197c0df9248c76a6f98a854a53ae0bd90585f
sha256: d7403586bcf0798e029e91d58e329035532981a6697fa9c927b109edff7d8703
sha512: 07920def25e1947ae0ba8937eecd9d289f1ff8fcbc1e13e1d536154262728eb4944f9e0f6f7a7374e3246d8e094fbab4dd03d1936ebc4a709d43eba0e8e1bf5b
ssdeep: 384:ph+sZ2UjXr8CNuwRhMjcL6ThjbtvbqOzpFVEJ:F3rjNH3Mj1ThjbtDqOzp7E
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15F14C433A290EC27F5C24B720AF687F5C1A57E344F524D0B59897F2E3E33A521991B4A
sha3_384: 6aed49c15bb94b494d9469c9aa5faf864773f2c9436997f5ee2c17dbd7cc1a6f5815ba47d5065ad16bfed3d04be192c9
ep_bytes: 68c0914200e8f0ffffff000000000000
timestamp: 2019-01-12 12:27:37

Version Info:
Translation: 0x0804 0x04b0
mpanyName: aaaa
anyName: aaaa
e: aaaa
: ,
FileVersion
Name: Kawaii-Unicorn
exe:

Generic.Dacic.94CCEEA9.A.807F495F also known as:

Bkav	W32.AIDetect.malware1
MicroWorld-eScan	Generic.Dacic.94CCEEA9.A.807F495F
FireEye	Generic.mg.5ba72db77a28f08e
ALYac	Generic.Dacic.94CCEEA9.A.807F495F
Cylance	Unsafe
K7AntiVirus	P2PWorm ( 0054601e1 )
K7GW	P2PWorm ( 0054601e1 )
CrowdStrike	win/malicious_confidence_100% (W)
Cyren	W32/VBClone.A.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/VBClone.D
APEX	Malicious
Cynet	Malicious (score: 100)
Kaspersky	Trojan.Win32.VB.dosb
BitDefender	Generic.Dacic.94CCEEA9.A.807F495F
NANO-Antivirus	Trojan.Win32.VB.hfuthq
Avast	Win32:VB-AJKU [Trj]
Ad-Aware	Generic.Dacic.94CCEEA9.A.807F495F
Emsisoft	Generic.Dacic.94CCEEA9.A.807F495F (B)
Comodo	TrojWare.Win32.VBClone.B@88ji29
DrWeb	Trojan.MulDrop17.61497
VIPRE	Generic.Dacic.94CCEEA9.A.807F495F
McAfee-GW-Edition	GenericRXHC-SS!5BA72DB77A28
Sophos	ML/PE-A + Troj/VB-KCP
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.VB.aqyg
Avira	TR/Crypt.XPACK.Gen
MAX	malware (ai score=88)
Antiy-AVL	Trojan/Generic.ASBOL.C594
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	Generic.Dacic.94CCEEA9.A.807F495F
GData	Generic.Dacic.94CCEEA9.A.807F495F
Google	Detected
AhnLab-V3	Trojan/Win32.Agent.R252862
Acronis	suspicious
McAfee	GenericRXHC-SS!5BA72DB77A28
Malwarebytes	MachineLearning/Anomalous.100%
Ikarus	Trojan.VB.VBClone
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Barys.AU!tr
BitDefenderTheta	Gen:NN.ZevbaF.34606.lm0@a0SGT2kb
AVG	Win32:VB-AJKU [Trj]

How to remove Generic.Dacic.94CCEEA9.A.807F495F?

Generic.Dacic.94CCEEA9.A.807F495F removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X