Malware

About “Generic.Exploit.Shellcode.3.76A4BAF5” infection

Malware Removal

The Generic.Exploit.Shellcode.3.76A4BAF5 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.Exploit.Shellcode.3.76A4BAF5 virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Generic.Exploit.Shellcode.3.76A4BAF5?


File Info:

crc32: 895B450A
md5: 1f9d84ccc774c4e201cf0247756717de
name: 1F9D84CCC774C4E201CF0247756717DE.mlw
sha1: 272ed34beb3ef852390ac11e359f3cdbe8a4fb7c
sha256: 1820f82c6e8f435b572d908fdeb302f388140e040a8904ed89eb2a8219b811bb
sha512: 6237c114c09f124cebb17fc62c33d00094d7d29c13abc6244754ede4f1258241558fbc2af859c1ed723008c189d88cc8e18cb08b062b1f795bd3a2f576dc664e
ssdeep: 48:1urUFYm2L/C5ftIRj+/MltYpXBo3kb4Lp6bVv+oBY:1u90aRjllMUcgwN++Y
type: MS-DOS executable, MZ for MS-DOS

Version Info:

0: [No Data]

Generic.Exploit.Shellcode.3.76A4BAF5 also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 00121dea1 )
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
ALYacDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (W)
K7GWTrojan ( 00121dea1 )
Cybereasonmalicious.cc774c
CyrenW32/Rozena.AH.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Rozena.ED
APEXMalicious
AvastWin32:Evo-gen [Susp]
KasperskyUDS:Trojan.Win32.Generic
BitDefenderDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
MicroWorld-eScanDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
Ad-AwareDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
SophosML/PE-A + ATK/Swrort-BE
BitDefenderThetaGen:NN.ZexaF.34688.amW@aacOaSi
TrendMicroTROJ_GEN.R005C0DE821
McAfee-GW-EditionBehavesLike.Win32.Generic.zt
FireEyeGeneric.mg.1f9d84ccc774c4e2
EmsisoftDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5 (B)
SentinelOneStatic AI – Malicious PE
AviraTR/Crypt.XPACK.Gen
MicrosoftTrojan:Win32/Meterpreter.P
ArcabitDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataDeepScan:Generic.Exploit.Shellcode.3.76A4BAF5
AhnLab-V3Malware/Win32.RL_Generic.R283409
McAfeeGenericRXGU-VO!1F9D84CCC774
MAXmalware (ai score=84)
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R005C0DE821
RisingBackdoor.Generic!8.CE (TFE:dGZlOgLm7RP+XKu81A)
YandexTrojan.GenAsa!RuXWX5C6OxI
IkarusTrojan.Win32.Rozena
FortinetW32/Rozena.ABC!tr
AVGWin32:Evo-gen [Susp]

How to remove Generic.Exploit.Shellcode.3.76A4BAF5?

Generic.Exploit.Shellcode.3.76A4BAF5 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment