How to remove “Generic.Dacic.9A683A74.A.5DB01794”?

The Generic.Dacic.9A683A74.A.5DB01794 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generic.Dacic.9A683A74.A.5DB01794 virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Generic.Dacic.9A683A74.A.5DB01794?


File Info:
name: F0D5C5E7BA7546F0A235.mlw
path: /opt/CAPEv2/storage/binaries/f2ccf764be5433a2f657645170cd66bb33b51672278a13f37d563f984ee3faa8
crc32: 4CEF2296
md5: f0d5c5e7ba7546f0a23525a533c44f5f
sha1: f3a0bac1bf230548143042fc69bb16272a3bf40d
sha256: f2ccf764be5433a2f657645170cd66bb33b51672278a13f37d563f984ee3faa8
sha512: 372da77c7b434ae7bea9fc86864c750b140d7fbf86798fc37841de26ef5df2204628a0c9805ff32f69953796d7377af513ebda453d6760cb1570591451fa9377
ssdeep: 768:8pO4Xb2E6NOSjkU6LP5ABhGUVTnbcuyD7UN:4OqbZ6NjkbyGgnouy8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10813A00E2C4B09A3F0650A78A7D226E64FFD9C4775E322BFCF9490961DD061C9994EF2
sha3_384: 37afeadfc25e417ac30857084a11ec11e0ae6108364c50f5b7484f28844b8e8c191a67ebeaae15b2562857c7bac9466b
ep_bytes: 60be00b041008dbe0060feff5789e58d
timestamp: 2015-01-27 03:56:27

Version Info:
0: [No Data]

Generic.Dacic.9A683A74.A.5DB01794 also known as:

MicroWorld-eScan	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
FireEye	Generic.mg.f0d5c5e7ba7546f0
CAT-QuickHeal	Trojan.Wacatac.A2.mue
ALYac	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.BlackMoon
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
Cybereason	malicious.7ba754
Baidu	Win32.Trojan.Agent.acb
Cyren	W32/Kryptik.DTU.gen!Eldorado
Elastic	malicious (high confidence)
APEX	Malicious
ClamAV	Win.Trojan.BlackMoon-4255490-1
BitDefender	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Avast	Win32:Banker-NBH [Trj]
Ad-Aware	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Sophos	Mal/Generic-S
Comodo	Packed.Win32.MUPX.Gen@24tbus
F-Secure	Trojan.TR/Crypt.ULPM.Gen
McAfee-GW-Edition	BehavesLike.Win32.Generic.pm
Trapmine	malicious.high.ml.score
Emsisoft	DeepScan:Generic.Dacic.9A683A74.A.5DB01794 (B)
SentinelOne	Static AI – Malicious PE
GData	Win32.Application.PUPStudio.A
Webroot	W32.Trojan.Agent.Gen
Avira	TR/Crypt.ULPM.Gen
Arcabit	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Microsoft	Worm:Win32/Ganelp!rfn
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.OnlineGameHack.C33730
McAfee	Artemis!F0D5C5E7BA75
MAX	malware (ai score=80)
Malwarebytes	Generic.Trojan.Malicious.DDS
Rising	Stealer.OnlineGames!1.AB1D (CLASSIC)
Ikarus	Worm.Win32.Ganelp
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/ULPM.16C0!tr
BitDefenderTheta	Gen:NN.ZexaF.34712.cmW@ae6ps!h
AVG	Win32:Banker-NBH [Trj]
CrowdStrike	win/malicious_confidence_100% (D)

How to remove Generic.Dacic.9A683A74.A.5DB01794?

Generic.Dacic.9A683A74.A.5DB01794 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X