Malware

Generic.DataStealer.1.E90C92BF (file analysis)

Malware Removal

The Generic.DataStealer.1.E90C92BF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.DataStealer.1.E90C92BF virus can do?

  • A process created a hidden window
  • Uses Windows utilities for basic functionality
  • Steals private information from local Internet browsers
  • Exhibits behavior characteristic of Pony malware
  • Exhibits possible ransomware file modification behavior
  • Collects information about installed applications
  • Creates a hidden or system file
  • Attempts to access Bitcoin/ALTCoin wallets
  • Harvests credentials from local FTP client softwares
  • Harvests information related to installed mail clients
  • Anomalous binary characteristics

How to determine Generic.DataStealer.1.E90C92BF?



File Info:

crc32: A1E7C09F
md5: 1cb87c589cabd4705d6b10295f725a33
name: 1CB87C589CABD4705D6B10295F725A33.mlw
sha1: 5f03e9f12dd023ab8d67ab7e24bd99cef7ce6627
sha256: 366acc456557b3cdde45aab1a390af9fbfedaeb1b5c6ffee5d88cb845bb41ede
sha512: 457e71eea33976fd0ffa5ecc9c2ee6f9118a7712c072fdbf9c896712acbb232955d200257785a43078abb048497e1283a9f422cc011a694a088e34021058d2ac
ssdeep: 3072:bBTLZhs0uDI0rAfOXl+y+uql/GOtsrVrqhTqndtndhndKndI:1TLFuD6fOXlql/GLJrqqndtndhndKndI
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Generic.DataStealer.1.E90C92BF also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Stealer.13052
MicroWorld-eScanGeneric.DataStealer.1.E90C92BF
FireEyeGeneric.mg.1cb87c589cabd470
CAT-QuickHealTrojanpws.Tepfer.20314
McAfeeFareit-FBK!1CB87C589CAB
CylanceUnsafe
VIPRETrojan.Win32.Fareit.j (fs)
AegisLabTrojan.Win32.Generic.mtwx
SangforWin.Trojan.Fareit-403
K7AntiVirusPassword-Stealer ( 0055e3dc1 )
BitDefenderGeneric.DataStealer.1.E90C92BF
K7GWPassword-Stealer ( 0055e3dc1 )
Cybereasonmalicious.89cabd
BitDefenderThetaGen:NN.ZexaF.34590.k8W@aWP2Kah
CyrenW32/S-531fd00a!Eldorado
SymantecDownloader.Ponik!gm
APEXMalicious
AvastSf:Crypt-AQ [Trj]
ClamAVWin.Trojan.PonyStealer-9831667-0
KasperskyTrojan-PSW.Win32.Tepfer.gen
AlibabaTrojanPSW:Win32/Tepfer.ec90070c
NANO-AntivirusTrojan.Win32.Tepfer.dqjlcn
ViRobotBackdoor.Win32.Pony.Gen.A
RisingStealer.Fareit!8.170 (TFE:dGZlOgJmjdeFOpWuOA)
Ad-AwareGeneric.DataStealer.1.E90C92BF
TACHYONTrojan-PWS/W32.Tepfer.165348
EmsisoftGeneric.DataStealer.1.E90C92BF (B)
ComodoTrojWare.Win32.PWS.Fareit.GS@5t8zib
F-SecureTrojan.TR/BAS.Fareit.owaqw
BaiduWin32.Trojan-PSW.Fareit.a
ZillyaTrojan.Tepfer.Win32.80159
McAfee-GW-EditionBehavesLike.Win32.Dropper.cm
SophosMal/Generic-R + Troj/DwnLdr-MJA
SentinelOneStatic AI – Malicious PE
JiangminTrojan/PSW.Tepfer.ccdw
MaxSecureTrojan.Malware.121218.susgen
AviraTR/BAS.Fareit.owaqw
Antiy-AVLTrojan[PSW]/Win32.Tepfer
MicrosoftPWS:Win32/Fareit
GridinsoftTrojan.Win32.Fareit.vl!i
ArcabitGeneric.DataStealer.1.E90C92BF
ZoneAlarmTrojan-PSW.Win32.Tepfer.gen
GDataWin32.Trojan-Stealer.Fareit.O
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Tepfer.R295551
Acronissuspicious
VBA32SScope.Malware-Cryptor.Ponik
ALYacGeneric.DataStealer.1.E90C92BF
MAXmalware (ai score=89)
MalwarebytesSpyware.Pony
PandaTrj/Genetic.gen
ESET-NOD32Win32/PSW.Fareit.G
TencentMalware.Win32.Gencirc.10b0c571
YandexTrojan.PSteal.Gen.TO
IkarusTrojan.Crypt
eGambitUnsafe.AI_Score_100%
FortinetW32/Fareit.G!tr
AVGSf:Crypt-AQ [Trj]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/TrojanSpy.Tepfer.HxMBQd0A

How to remove Generic.DataStealer.1.E90C92BF?

Generic.DataStealer.1.E90C92BF removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment