Malware

Generic.Malware.GH.D2ECB2A0 (file analysis)

Malware Removal

The Generic.Malware.GH.D2ECB2A0 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Malware.GH.D2ECB2A0 virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Generic.Malware.GH.D2ECB2A0?



File Info:

crc32: A47E2A28
md5: 51ae6386e56c4795a65778820d2579f1
name: 51AE6386E56C4795A65778820D2579F1.mlw
sha1: 9280372f085e35cbd5b528928afe3f227b0b9dd0
sha256: 1058c616cf547f16138f227bcb224c1de2921b1ee85f4493023bea3c33f49c05
sha512: 65cdcef760f888f28ff550b1216b6c05dd4fc38f0cd01c62eae4ca203b81418a0291b2edb4c16f5dd2aaa674d0265453f478f5844214d86749ae189c60278700
ssdeep: 192:Cs2wv3AW1m9jNxUhjct4pFUl015FkCY0fuPI:Cs2PMm9jrUVcWpykbkCvfuP
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2018
Assembly Version: 1.0.0.0
InternalName: hidden tear.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: hidden tear
ProductVersion: 1.0.0.0
FileDescription: hidden tear
OriginalFilename: hidden tear.exe

Generic.Malware.GH.D2ECB2A0 also known as:

K7AntiVirusTrojan ( 004cd5d01 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.10598
CynetMalicious (score: 100)
ALYacGeneric.Malware.GH.D2ECB2A0
CylanceUnsafe
ZillyaTrojan.Generic.Win32.256930
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaRansom:MSIL/Ryzerlo.5444aa1d
K7GWTrojan ( 004cd5d01 )
Cybereasonmalicious.6e56c4
CyrenW32/Ransom.IQ.gen!Eldorado
SymantecRansom.HiddenTear!g1
ESET-NOD32a variant of MSIL/Filecoder.Y
AvastWin32:Trojan-gen
ClamAVWin.Ransomware.Hiddentear-9752356-0
KasperskyHEUR:Trojan-Ransom.Win32.Generic
BitDefenderGeneric.Malware.GH.D2ECB2A0
NANO-AntivirusTrojan.Win32.Filecoder.ethwkz
MicroWorld-eScanGeneric.Malware.GH.D2ECB2A0
TencentWin32.Trojan.Generic.Suxy
Ad-AwareGeneric.Malware.GH.D2ECB2A0
SophosML/PE-A + Troj/Cryptear-A
BitDefenderThetaGen:NN.ZemsilF.34722.am0@aCWENlm
VIPRETrojan.Win32.Generic!BT
TrendMicroRansom_RAMSIL.SM
McAfee-GW-EditionRansomware-FTD!51AE6386E56C
FireEyeGeneric.mg.51ae6386e56c4795
EmsisoftGeneric.Malware.GH.D2ECB2A0 (B)
SentinelOneStatic AI – Malicious PE
AviraHEUR/AGEN.1129952
eGambitUnsafe.AI_Score_99%
Antiy-AVLTrojan/Generic.ASMalwS.28C7653
MicrosoftRansom:MSIL/Ryzerlo.A
ArcabitGeneric.Malware.GH.D2ECB2A0
AegisLabTrojan.Win32.Generic.4!c
GDataMSIL.Trojan-Ransom.Cryptear.R
AhnLab-V3Trojan/Win32.RL_Generic.C3570976
McAfeeRansomware-FTD!51AE6386E56C
MAXmalware (ai score=100)
VBA32Trojan.Encoder
MalwarebytesRansom.HiddenTear
PandaTrj/GdSda.A
TrendMicro-HouseCallRansom_RAMSIL.SM
YandexTrojan.Agent!HEkxpjjWs9E
IkarusTrojan-Ransom.HiddenTear
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Filecoder.AK!tr.ransom
AVGWin32:Trojan-gen
Paloaltogeneric.ml

How to remove Generic.Malware.GH.D2ECB2A0?

Generic.Malware.GH.D2ECB2A0 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment