How to remove “Generic.DownloaderS.CF47E782”?

The Generic.DownloaderS.CF47E782 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generic.DownloaderS.CF47E782 virus can do?

Unconventionial language used in binary resources: Chinese (Simplified)
Anomalous binary characteristics

How to determine Generic.DownloaderS.CF47E782?


File Info:
crc32: 799B9EC4
md5: fc48b46624f3b115eb728dd1d38a4335
name: FC48B46624F3B115EB728DD1D38A4335.mlw
sha1: c91f6a935bd97cf0c2ae74906466bce88f9d3821
sha256: 9fbf033a1b1be6cc188d00feb1eac98d848d487f00c448d281ae39faf39c9087
sha512: a20d7deb4b1c3160ea1c398dd24ed1239565dd271eb6e3fc85c2a397f7263aa19d7ed7afb99997aa2ac7b7635bd114c5d2ea7adce1e653bcb826dbdd49b8f1f0
ssdeep: 12288:iQDhqHhZyNzF5EVtnS8wcMfNXMMEhJsCPJWBK3P9A:ZWhoz8nYXtEhqCPJU0
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright xa9 1998-2020 VMware, Inc.
InternalName: vmui
FileVersion: 15.5.6 build-16341506
CompanyName: VMware, Inc.
ProductName: VMware Workstation
ProductVersion: 15.5.6 build-16341506
FileDescription: VMware Workstation
OriginalFilename: vmware.exe
Translation: 0x0409 0x04b0

Generic.DownloaderS.CF47E782 also known as:

Bkav	W32.AIDetect.malware1
Elastic	malicious (high confidence)
DrWeb	Trojan.DownLoader25.26103
Cynet	Malicious (score: 100)
CAT-QuickHeal	Trojan.Dynamer.29610
ALYac	DeepScan:Generic.DownloaderS.CF47E782
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_90% (W)
Cybereason	malicious.624f3b
Baidu	Win32.Trojan.Farfli.bg
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/TrojanDownloader.Agent.CDA
APEX	Malicious
Avast	Win32:Agent-AYUY [Trj]
ClamAV	Win.Trojan.Dupzom-6453732-2
Kaspersky	Backdoor.Win32.Farfli.afjh
BitDefender	DeepScan:Generic.DownloaderS.CF47E782
NANO-Antivirus	Trojan.Win32.Farfli.ealxve
MicroWorld-eScan	DeepScan:Generic.DownloaderS.CF47E782
Tencent	Malware.Win32.Gencirc.10b493e4
Ad-Aware	DeepScan:Generic.DownloaderS.CF47E782
Comodo	TrojWare.Win32.GameThief.Magania.~NWABU@18g2sq
BitDefenderTheta	Gen:NN.ZexaF.34684.wr0@a4BYnwmj
McAfee-GW-Edition	Artemis
FireEye	Generic.mg.fc48b46624f3b115
Emsisoft	DeepScan:Generic.DownloaderS.CF47E782 (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	Backdoor.Farfli.rn
Avira	HEUR/AGEN.1111360
eGambit	Unsafe.AI_Score_99%
Microsoft	Trojan:Win32/Wacatac.B!ml
Arcabit	DeepScan:Generic.DownloaderS.CF47E782
GData	DeepScan:Generic.DownloaderS.CF47E782
AhnLab-V3	Backdoor/Win32.Farfli.C1544722
McAfee	Artemis!FC48B46624F3
MAX	malware (ai score=80)
VBA32	BScope.Trojan.Downloader
Malwarebytes	MachineLearning/Anomalous.94%
Rising	Malware.Heuristic!ET#99% (RDMK:cmRtazrwsEbw5jnrUiDfpZwCMvgP)
Ikarus	Trojan.Win32.Farfli
Fortinet	W32/Agent.CBK!tr
AVG	Win32:Agent-AYUY [Trj]

How to remove Generic.DownloaderS.CF47E782?

Generic.DownloaderS.CF47E782 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X