Malware

Should I remove “Generic.DataStealer.1.21DC049E”?

Malware Removal

The Generic.DataStealer.1.21DC049E is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.DataStealer.1.21DC049E virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Generic.DataStealer.1.21DC049E?


File Info:

crc32: 1D3CC2CF
md5: bad26f32057a0989e09793257f409fe9
name: BAD26F32057A0989E09793257F409FE9.mlw
sha1: 4e058b1dd8a41153996f15df637a835e6dc8e220
sha256: e1381a84991376932192fe93eb883a5b1453826df218ab3b2d322e495bcc0f95
sha512: e982151d1277437a0d7140cf9498ae82ef036d94893031094fa92b2ba0bb6557649ed906953d012a150b9b0b6a2307b665db78c48e0672145aa8fa1aceeee289
ssdeep: 24576:ZtVbh1iYNEkjyXD2L0Ym2Te+IBNlddQGCsoEUU9tda9jcnovHOYesxr:JSQfjUYlT2vdQGCs7NLgeovuYeE
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

LegalCopyright:
FileVersion: 7.0.0.0
FileDescription: Porno secret
Translation: 0x0409 0x0000

Generic.DataStealer.1.21DC049E also known as:

BkavW32.AIDetect.malware1
K7AntiVirusPassword-Stealer ( 00552b401 )
Elasticmalicious (high confidence)
DrWebTrojan.MulDrop15.62138
CynetMalicious (score: 100)
CAT-QuickHealTrojan.Stealer.S12567177
ALYacGeneric.DataStealer.1.21DC049E
CylanceUnsafe
CrowdStrikewin/malicious_confidence_60% (D)
K7GWPassword-Stealer ( 00552b401 )
Cybereasonmalicious.2057a0
CyrenW32/DataStealer.B.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Packed.EnigmaProtector.J suspicious
ZonerProbably Heur.ExeHeaderH
APEXMalicious
AvastWin32:BackdoorX-gen [Trj]
ClamAVWin.Packed.Datastealer-7669625-0
KasperskyTrojan-PSW.MSIL.Poul.gen
BitDefenderGeneric.DataStealer.1.21DC049E
MicroWorld-eScanGeneric.DataStealer.1.21DC049E
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZemsilF.34796.gm0@amJZX3c
TrendMicroCoinminer.MSIL.MALBTC.SMAC
McAfee-GW-EditionBehavesLike.Win32.Generic.tc
FireEyeGeneric.mg.bad26f32057a0989
EmsisoftTrojan.Packed (A)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1128126
Antiy-AVLTrojan/Generic.ASMalwS.303A89C
MicrosoftTrojan:Win32/Ditertag.A
SUPERAntiSpywareTrojan.Agent/Gen-Dropper
ZoneAlarmHEUR:Trojan-Downloader.Win32.Agent.gen
GDataMSIL.Trojan-Stealer.Agent.AXV
AhnLab-V3CoinMiner/Win.MALBTC.C4547463
Acronissuspicious
McAfeeArtemis!BAD26F32057A
MAXmalware (ai score=86)
VBA32Trojan.Zpevdo
TrendMicro-HouseCallCoinminer.MSIL.MALBTC.SMAC
RisingPUF.Pack-Enigma!1.BA33 (CLASSIC)
YandexTrojan.GenAsa!haJ7mRSXJYk
IkarusTrojan.MSIL.PSW
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Agent.CQ!tr
AVGWin32:BackdoorX-gen [Trj]
Paloaltogeneric.ml

How to remove Generic.DataStealer.1.21DC049E?

Generic.DataStealer.1.21DC049E removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment