Generic.Malware.GJSFMBVbg.667C2BD4 removal instruction

The Generic.Malware.GJSFMBVbg.667C2BD4 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.Malware.GJSFMBVbg.667C2BD4 virus can do?

Sample contains Overlay data
Uses Windows utilities for basic functionality
Reads data out of its own binary image
Drops a binary and executes it
The binary contains an unknown PE section name indicative of packing
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
Authenticode signature is invalid
Creates a copy of itself
Deletes executed files from disk
Uses suspicious command line tools or Windows utilities
Yara detections observed in process dumps, payloads or dropped files

How to determine Generic.Malware.GJSFMBVbg.667C2BD4?


File Info:
name: 8E6E5D1D5DAB91F74CFF.mlw
path: /opt/CAPEv2/storage/binaries/3d140cbb68bd1d9c725b36684f2030fc9475043691fe7f8ffb16315727860f97
crc32: D9DBF57F
md5: 8e6e5d1d5dab91f74cffb1eb48551db7
sha1: cef54bbb9cdbd8621cd7ae5490efe8dd1c59d9ae
sha256: 3d140cbb68bd1d9c725b36684f2030fc9475043691fe7f8ffb16315727860f97
sha512: 79bc062878bb9ba7b93985c879a8944baea214c9fd0188b51155934630c7a9c083012fff502016e408e444458ea08f82d2c21fc38506a409ad45d54990571548
ssdeep: 6144:/Rqmpp+amNOGokzLyM9tsLAitQo6tzOKkzIt8gKyfjxfR9D2j4yNy50wlR:ZqmpplpGoGL3etQoMiXM8gxf/Sj4y2lR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BB7423AE3B6F4947C29EDCFBC702BB904E2425F3E0BC57E87035DE8D65288B09694516
sha3_384: 084302e35c9f91892d9ddf2bfeb800464beeec8188a82b6d31e4a1942658e9bdadcb6c7d7409610a528ba3dff2c3b064
ep_bytes: 60be00605a008dbe00b0e5ffc7871c70
timestamp: 2004-11-19 12:19:18

Version Info:
0: [No Data]

Generic.Malware.GJSFMBVbg.667C2BD4 also known as:

Lionic	Trojan.Win32.Prorat.kYMr
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Generic.Malware.GJSFMBVbg.667C2BD4
FireEye	Generic.mg.8e6e5d1d5dab91f7
CAT-QuickHeal	Backdoor.Prorat.T8
Skyhigh	BehavesLike.Win32.Generic.fc
McAfee	BackDoor-AVW
Malwarebytes	Generic.Malware.AI.DDS
Zillya	Backdoor.Prorat.Win32.694
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Backdoor ( 0020e8c31 )
Alibaba	Trojan:Win32/Starter.ali2000005
K7GW	Backdoor ( 0020e8c31 )
CrowdStrike	win/malicious_confidence_100% (W)
Baidu	Win32.Backdoor.Prorat.f
VirIT	Backdoor.Prorat.B
Symantec	Trojan Horse
ESET-NOD32	Win32/Prorat
APEX	Malicious
TrendMicro-HouseCall	BKDR_PRORAT.SMM
ClamAV	Win.Trojan.Prorat-37
Kaspersky	Backdoor.Win32.Prorat.npv
BitDefender	Generic.Malware.GJSFMBVbg.667C2BD4
NANO-Antivirus	Trojan.Win32.Prorat-19.hhti
SUPERAntiSpyware	Trojan.Agent/Gen-Prorat
Avast	Win32:GenMalicious-BME [Trj]
Tencent	Trojan.Win32.Prorat.ad
TACHYON	Backdoor/W32.Agent.2027052
Emsisoft	Generic.Malware.GJSFMBVbg.667C2BD4 (B)
F-Secure	Backdoor.BDS/Prorat.19.M
DrWeb	Trojan.DownLoad1.39115
VIPRE	Generic.Malware.GJSFMBVbg.667C2BD4
TrendMicro	BKDR_PRORAT.SMM
Sophos	Troj/Prorat-19
Ikarus	Backdoor.Win32.Prorat
Jiangmin	Backdoor/Prorat.ci
Google	Detected
Avira	BDS/Prorat.19.M
Varist	W32/ProratP.A
Antiy-AVL	Trojan[Backdoor]/Win32.Prorat
Kingsoft	Win32.Hack.Prorat.npv
Microsoft	Backdoor:Win32/Prorat.L
Xcitium	Backdoor.Win32.Agent.AVW85@11x5ri
Arcabit	Generic.Malware.GJSFMBVbg.667C2BD4
ViRobot	Backdoor.Win32.Prorat.350764.B
ZoneAlarm	Backdoor.Win32.Prorat.npv
GData	Win32.Trojan.PSE1.4OP2OD
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Prorat.R1757
VBA32	Backdoor.Prorat
ALYac	Generic.Malware.GJSFMBVbg.667C2BD4
MAX	malware (ai score=100)
Cylance	unsafe
Panda	Trj/Genetic.gen
Zoner	Trojan.Win32.32410
Rising	Backdoor.ProRat.crf (CLASSIC)
Yandex	Trojan.GenAsa!Br8d4Xxe2vk
SentinelOne	Static AI – Malicious PE
MaxSecure	Backdoor.W32.Prorat.npv
Fortinet	W32/Prorat.I!tr.bdr
BitDefenderTheta	Gen:NN.ZexaF.36802.vmHfau9N9aii
AVG	Win32:GenMalicious-BME [Trj]
Cybereason	malicious.d5dab9
DeepInstinct	MALICIOUS
alibabacloud	Backdoor

How to remove Generic.Malware.GJSFMBVbg.667C2BD4?

Generic.Malware.GJSFMBVbg.667C2BD4 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Generic.Malware.GJSFMBVbg.667C2BD4 removal instruction

Gridinsoft Anti-Malware

How to determine Generic.Malware.GJSFMBVbg.667C2BD4?

File Info:

Version Info:

Generic.Malware.GJSFMBVbg.667C2BD4 also known as:

How to remove Generic.Malware.GJSFMBVbg.667C2BD4?

About the author

Paul Valéry

Leave a Comment X

Gridinsoft Anti-Malware

How to determine Generic.Malware.GJSFMBVbg.667C2BD4?

File Info:

Version Info:

Generic.Malware.GJSFMBVbg.667C2BD4 also known as:

How to remove Generic.Malware.GJSFMBVbg.667C2BD4?

You may also like

About the author

Paul Valéry

Leave a Comment X