Generic.Dacic.9A683A74.A.5DB01794 (B) malicious file

The Generic.Dacic.9A683A74.A.5DB01794 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generic.Dacic.9A683A74.A.5DB01794 (B) virus can do?

The binary contains an unknown PE section name indicative of packing
The executable is compressed using UPX
Authenticode signature is invalid

How to determine Generic.Dacic.9A683A74.A.5DB01794 (B)?


File Info:
name: BD5054C2CFF62CCC8DE3.mlw
path: /opt/CAPEv2/storage/binaries/1432db25ae9726638ed0ad72726ba1c1e87c4ce94fd42e2f15e1da1f7cbbaeb9
crc32: 44629477
md5: bd5054c2cff62ccc8de3f59e3ff5fa52
sha1: c1905236c3ce9b08027a61d5de9280733afc0530
sha256: 1432db25ae9726638ed0ad72726ba1c1e87c4ce94fd42e2f15e1da1f7cbbaeb9
sha512: 0e79917e77022318131f921f94524ba3e7dbcf776100892acd6e80d279e346ac9e64956330c0ea7d6e6bc9f2bd59f74a8f44caa63f0b9a87ea44f3cfdd6ca94a
ssdeep: 768:8pO4Xb2E6NOSjkU6LB5ABhGUVTnbcuyD7UN:4OqbZ6NjkbAGgnouy8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10C13A00E2C4B05A3F0650A78A7D226E64FFD9C4775E322BFCF9490961DD061C9994EF2
sha3_384: 8b0dfd631b5470e285bbadd6f6f9cea6a33c420eb148015423e36e664dd8e2082d14f090f489029ccc18389d78b1aa36
ep_bytes: 60be00b041008dbe0060feff5789e58d
timestamp: 2015-01-27 03:56:27

Version Info:
0: [No Data]

Generic.Dacic.9A683A74.A.5DB01794 (B) also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
FireEye	Generic.mg.bd5054c2cff62ccc
CAT-QuickHeal	Trojan.Wacatac.A2.mue
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.BlackMoon
K7AntiVirus	Riskware ( 0040eff71 )
K7GW	Riskware ( 0040eff71 )
CrowdStrike	win/malicious_confidence_100% (D)
Baidu	Win32.Trojan.Agent.acb
Cyren	W32/Kryptik.DTU.gen!Eldorado
APEX	Malicious
ClamAV	Win.Trojan.BlackMoon-4255490-1
BitDefender	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Avast	Win32:Banker-NBH [Trj]
Ad-Aware	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Emsisoft	DeepScan:Generic.Dacic.9A683A74.A.5DB01794 (B)
Comodo	Packed.Win32.MUPX.Gen@24tbus
Trapmine	malicious.high.ml.score
Sophos	ML/PE-A
Ikarus	Worm.Win32.Ganelp
GData	Win32.Application.PUPStudio.A
Avira	TR/Crypt.ULPM.Gen
MAX	malware (ai score=85)
Arcabit	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Microsoft	Worm:Win32/Ganelp!rfn
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.OnlineGameHack.C33730
BitDefenderTheta	Gen:NN.ZexaF.34742.cmW@ae6ps!h
ALYac	DeepScan:Generic.Dacic.9A683A74.A.5DB01794
Malwarebytes	Generic.Trojan.Malicious.DDS
Rising	Stealer.OnlineGames!1.AB1D (CLASSIC)
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/ULPM.16C0!tr
AVG	Win32:Banker-NBH [Trj]
Cybereason	malicious.2cff62

How to remove Generic.Dacic.9A683A74.A.5DB01794 (B)?

Generic.Dacic.9A683A74.A.5DB01794 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X