Malware

Generic.DataStealer.1.9CF13C9F malicious file

Malware Removal

The Generic.DataStealer.1.9CF13C9F is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.DataStealer.1.9CF13C9F virus can do?

  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the Avalon malware family
  • Binary compilation timestomping detected

How to determine Generic.DataStealer.1.9CF13C9F?



File Info:

name: 36835DE2909A31D3FEE9.mlw
path: /opt/CAPEv2/storage/binaries/b4592f5b2328b5b4030f972ceb52fc6415bbce55e4f9b574f6352c9238288400
crc32: 3D6E4C37
md5: 36835de2909a31d3fee925df05c3949c
sha1: 56b0b98dd62236a2f0d4948ec613265cfceddd48
sha256: b4592f5b2328b5b4030f972ceb52fc6415bbce55e4f9b574f6352c9238288400
sha512: bc91d32a9bed22b56e1eeefb6207330b9889e12b7be786b18898a9711a93b5d700bfb7ce01cf5f1180c1f974fd1cb812a9be8df29c9b9cf222c70487190e3eb2
ssdeep: 24576:RfQYosxhhUF54clNf7+6uHAW92zt/sWu2BSMCqDoRt+G:vo54clgLH+tkWJ0Nb
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15935E00433EC8B66E1FF5BB5E0B25190C371B562A62EE78F5D8464EE2D233508D11BA7
sha3_384: b586bf89add5788dc29c55e6cf3e036d778bbf9000f273ee1ac4873d2176c661fa34b49f4ca6f62af80ddcd2b6f7c5d9
ep_bytes: ff250020400000000000000000000000
timestamp: 2079-07-06 00:43:36


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: 
FileVersion: 1.0.0.0
InternalName: Lucky Execute.exe
LegalCopyright: 
LegalTrademarks: 
OriginalFilename: Lucky Execute.exe
ProductName: 
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Generic.DataStealer.1.9CF13C9F also known as:

BkavW32.AIDetectMalware.CS
Elasticmalicious (high confidence)
MicroWorld-eScanDeepScan:Generic.DataStealer.1.9CF13C9F
FireEyeGeneric.mg.36835de2909a31d3
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
SkyhighGenericRXOV-LT!36835DE2909A
ALYacDeepScan:Generic.DataStealer.1.9CF13C9F
Cylanceunsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojanSpy:MSIL/DarkStealer.b1863ea9
K7GWTrojan ( 005944011 )
K7AntiVirusTrojan ( 005944011 )
ArcabitDeepScan:Generic.DataStealer.1.9CF13C9F
VirITTrojan.Win32.MSIL.CHG
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/PSW.CoinStealer.CC
APEXMalicious
ClamAVWin.Packed.GrandSteal-9783630-1
KasperskyHEUR:Trojan-PSW.MSIL.Stealer.gen
BitDefenderDeepScan:Generic.DataStealer.1.9CF13C9F
SUPERAntiSpywareTrojan.Agent/Gen-CoinStealer
AvastWin32:PWSX-gen [Trj]
RisingStealer.Echelon!1.DA84 (CLASSIC)
TACHYONTrojan-Spy/W32.DN-SpyEyes.1064960.B
EmsisoftDeepScan:Generic.DataStealer.1.9CF13C9F (B)
DrWebTrojan.PWS.StealerNET.52
ZillyaTrojan.CoinStealer.Win32.1641
SophosMal/CoinSteal-E
IkarusTrojan-Spy.Echelon
VaristW32/MSIL_Troj.AEZ.gen!Eldorado
Antiy-AVLTrojan[Spy]/MSIL.SpyEyes
MicrosoftTrojan:Win32/DarkStealer.ST!MTB
ZoneAlarmHEUR:Trojan-PSW.MSIL.Stealer.gen
GDataMSIL.Trojan-Stealer.Agent.AXU
CynetMalicious (score: 100)
AhnLab-V3Malware/Win.Generic.C4442627
McAfeeGenericRXOV-LT!36835DE2909A
MAXmalware (ai score=89)
VBA32Dropper.MSIL.gen
MalwarebytesCoinStealer.Spyware.Stealer.DDS
TencentMalware.Win32.Gencirc.10bbdad2
YandexTrojan.PWS.CoinStealer!rq+2K+aC3Ik
SentinelOneStatic AI – Malicious PE
FortinetMSIL/CoinStealer.CC!tr
BitDefenderThetaGen:NN.ZemsilF.36744.bn0@auMpqKo
AVGWin32:PWSX-gen [Trj]
DeepInstinctMALICIOUS

How to remove Generic.DataStealer.1.9CF13C9F?

Generic.DataStealer.1.9CF13C9F removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment