Malware

Should I remove “Generic.Exploit.Shellcode.1.5D7E8A70”?

Malware Removal

The Generic.Exploit.Shellcode.1.5D7E8A70 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Exploit.Shellcode.1.5D7E8A70 virus can do?

  • Crashed cuckoomon during analysis. Report this error to the Github repo.
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Generic.Exploit.Shellcode.1.5D7E8A70?



File Info:

crc32: 09D071D3
md5: c30f3258e40fae05d2c8c7db61f00cbd
name: C30F3258E40FAE05D2C8C7DB61F00CBD.mlw
sha1: 6b6472a771406a938b7e361c81c5c8ec5f2299c6
sha256: 9d78561ee0aab4394567f8862809bb5112845b11d7ebad62d6932784891d3848
sha512: 03b232e764cc1339523dd1a277a216d2d0e1534159895065eedcdea2552ca1f197e2ebaf325e4f9f84ce65848687ec38048a6d2013e8cdab1e11bcaec4aa364d
ssdeep: 768:glVimK9+jvRpBq1RnvCKlMHK2kF4kU8/Vvpm3xxTB3lobeEm9U:gymc+HB1KlMHKvUL3xxfobe9
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) Microsoft Corp. 1981-1999
InternalName: WhoAmI.exe
FileVersion: 5.00.2128.1
CompanyName: Microsoft Corporation
ProductName: Microsoft(R) Windows (R) 2000 Operating System
ProductVersion: 5.00.2128.1
FileDescription: Whoami - queries user information
OriginalFilename: WHOAMI.EXE
Translation: 0x0409 0x04b0

Generic.Exploit.Shellcode.1.5D7E8A70 also known as:

ClamAVWin.Trojan.MSShellcode-6360730-0
VIPRETrojan.Win32.Generic!BT
BitDefenderDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
Cybereasonmalicious.8e40fa
ArcabitDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
BitDefenderThetaGen:NN.ZexaF.34804.em2@aCFGnKhi
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Generic
MicroWorld-eScanDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
Ad-AwareDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
SophosATK/Swrort-N
F-SecureHeuristic.HEUR/AGEN.1131403
FireEyeGeneric.mg.c30f3258e40fae05
EmsisoftDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70 (B)
AviraHEUR/AGEN.1131403
MAXmalware (ai score=80)
MicrosoftTrojan:Win32/Meterpreter.A!cl
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
ALYacDeepScan:Generic.Exploit.Shellcode.1.5D7E8A70
TACHYONTrojan/W32.Agent.66560.AJD
CylanceUnsafe
APEXMalicious
YandexTrojan.GenAsa!3Fnm5GqdTX0
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Generic.Exploit.Shellcode.1.5D7E8A70?

Generic.Exploit.Shellcode.1.5D7E8A70 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment