Malware

About “Generic.Keylogger.2.1AA60ADD” infection

Malware Removal

The Generic.Keylogger.2.1AA60ADD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.Keylogger.2.1AA60ADD virus can do?

  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Generic.Keylogger.2.1AA60ADD?


File Info:

name: BF0FAA3126BEDE25E5C5.mlw
path: /opt/CAPEv2/storage/binaries/590b6662db79fd8a12ba666d641484c7bfabfa9586f36a8612619c3868226016
crc32: F3DC31C7
md5: bf0faa3126bede25e5c5a8cfacd22016
sha1: 7d2a2d5fa8397d318f372ba653f5de8e4d621156
sha256: 590b6662db79fd8a12ba666d641484c7bfabfa9586f36a8612619c3868226016
sha512: 98dc78240775016cfe68622ce1927fe6ff9407be5ce4ec4dbf9f4f6ef93ccb71b30480a2e68c6dcfdf0662e620cf22e1522bbee7a836babae05c617c1fdf4141
ssdeep: 12288:F+Mhgdjf1Png+/Sjz9aTb7kJ428zbOOTBzxx+B9MdRIcTEpQLw/RKD6FTBv:LET1PrSj5sbi4bH3fQEAl5s6FTV
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T126058E22F2805673CD2A17358C3B8A655A31BFD02E38590E77ED3E5C6E7B6827D191C2
sha3_384: 44193edaa26b2354d1b6acdb576cc149b431e53efae0f19b0f483ded0c17e349b88db009ae33f1148a7328f75617b514
ep_bytes: 5589ece9fdfa030000000000509f80ea
timestamp: 1992-06-19 22:22:17

Version Info:

0: [No Data]

Generic.Keylogger.2.1AA60ADD also known as:

AVGWin32:GenMalicious-NXG [PUP]
Elasticmalicious (high confidence)
DrWebBackDoor.Pigeon1.12496
MicroWorld-eScanGeneric.Keylogger.2.1AA60ADD
CAT-QuickHealBackdoor.Hupigon.20797
ALYacGeneric.Keylogger.2.1AA60ADD
MalwarebytesFlyStudio.Trojan.Packer.DDS
VIPREGeneric.Keylogger.2.1AA60ADD
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 7000000f1 )
K7GWTrojan ( 7000000f1 )
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderThetaGen:NN.ZelphiF.36196.ZKW@aKQ@RGmj
VirITBackdoor.Win32.Hupigon6.ITC
CyrenW32/Downloader.C.gen!Eldorado
SymantecSMG.Heur!gen
ESET-NOD32a variant of Win32/Hupigon
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Trojan.Hupigon-9883514-0
KasperskyBackdoor.Win32.Hupigon.sqck
BitDefenderGeneric.Keylogger.2.1AA60ADD
SUPERAntiSpywareTrojan.Agent/Gen-Hupigon
AvastWin32:GenMalicious-NXG [PUP]
TencentBackdoor.Win32.Hupigon.aan
EmsisoftGeneric.Keylogger.2.1AA60ADD (B)
F-SecureBackdoor.BDS/Hupigon.Gen
BaiduWin32.Trojan.Hupigon.a
TrendMicroTROJ_HUPIGON_EB250000.UVPA
McAfee-GW-EditionBehavesLike.Win32.Generic.ch
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.bf0faa3126bede25
SophosMal/Behav-141
SentinelOneStatic AI – Malicious PE
GDataWin32.Trojan.PSE.5F963Z
JiangminBackdoor/Hupigon.cnic
AviraBDS/Hupigon.Gen
MAXmalware (ai score=84)
Antiy-AVLTrojan[Backdoor]/Win32.Hupigon.sqck
ArcabitGeneric.Keylogger.2.1AA60ADD
ZoneAlarmBackdoor.Win32.Hupigon.sqck
MicrosoftBackdoor:Win32/Hupigon.ZAP!bit
GoogleDetected
AhnLab-V3Backdoor/Win32.Hupigon.R97644
Acronissuspicious
McAfeeGenericRXEN-TF!BF0FAA3126BE
VBA32MalwareScope.Trojan-PSW.Game.16
Cylanceunsafe
PandaGeneric Malware
TrendMicro-HouseCallTROJ_HUPIGON_EB250000.UVPA
RisingTrojan.KillAV!1.9EAB (CLASSIC)
IkarusBackdoor.Win32.Hupigon
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Wacatac.B!tr
Cybereasonmalicious.126bed
DeepInstinctMALICIOUS

How to remove Generic.Keylogger.2.1AA60ADD?

Generic.Keylogger.2.1AA60ADD removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment