Malware

About “Generic.Malware.Lco.04FC702C” infection

Malware Removal

The Generic.Malware.Lco.04FC702C is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Malware.Lco.04FC702C virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • A process attempted to delay the analysis task.
  • Expresses interest in specific running processes
  • A process created a hidden window
  • Drops a binary and executes it
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Creates a copy of itself
  • Uses suspicious command line tools or Windows utilities

How to determine Generic.Malware.Lco.04FC702C?



File Info:

crc32: 2C528E07
md5: 184fedf543f59816674a9aed5d63e7e0
name: 184FEDF543F59816674A9AED5D63E7E0.mlw
sha1: 2fe710660841dd478ec177e97609741c24bd9768
sha256: ba1a13c01d862b5391137777d5fc3d9b40a10382fe52b6724354a9491a13c953
sha512: 9028b60341877a2b85a982af331fd71a269087763831e6596f49bc111394fff890eb8491dbd7c3a75c658726866401541a7088e25fef4f7486f4e2d070a781a2
ssdeep: 3072:hsgJZEsizFJdsxeHKwON4sqDb2+GuqWiPBUPbezn6j5fBYMVUVmUXtbP8XJ:hsSEs4WxeqwON4szFu5ezn6j5qMu0Uh
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: x7248x6743x6240x6709 (C) 2020
InternalName: liudao
FileVersion: 1, 0, 0, 1
CompanyName: 
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: liudao x5e94x7528x7a0bx5e8f
SpecialBuild: 
ProductVersion: 1, 0, 0, 1
FileDescription: liudao Microsoft x57fax7840x7c7bx5e94x7528x7a0bx5e8f
OriginalFilename: liudao.EXE
Translation: 0x0804 0x04b0

Generic.Malware.Lco.04FC702C also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 004d35321 )
Elasticmalicious (high confidence)
DrWebTrojan.Siggen10.21040
CynetMalicious (score: 99)
ALYacDeepScan:Generic.Malware.Lco.04FC702C
CylanceUnsafe
ZillyaTrojan.Injector.Win32.791020
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
K7GWTrojan ( 004d35321 )
Cybereasonmalicious.543f59
ESET-NOD32a variant of Win32/Injector.CJVZ
APEXMalicious
AvastWin32:Trojan-gen
KasperskyHEUR:Backdoor.Win32.Farfli.gen
BitDefenderDeepScan:Generic.Malware.Lco.04FC702C
MicroWorld-eScanDeepScan:Generic.Malware.Lco.04FC702C
Ad-AwareDeepScan:Generic.Malware.Lco.04FC702C
F-SecureHeuristic.HEUR/AGEN.1101581
TrendMicroBackdoor.Win32.ZEGOST.SMAL02
McAfee-GW-EditionGenericRXLQ-UU!27249792D159
FireEyeGeneric.mg.184fedf543f59816
EmsisoftDeepScan:Generic.Malware.Lco.04FC702C (B)
SentinelOneStatic AI – Malicious PE
JiangminBackdoor.Farfli.duw
AviraHEUR/AGEN.1101581
eGambitUnsafe.AI_Score_95%
Antiy-AVLTrojan/Generic.ASMalwS.30B39BB
MicrosoftProgram:Win32/Wacapew.C!ml
ArcabitDeepScan:Generic.Malware.Lco.04FC702C
GDataDeepScan:Generic.Malware.Lco.04FC702C
McAfeeGenericRXLQ-UU!27249792D159
MAXmalware (ai score=85)
VBA32BScope.Backdoor.Farfli
TrendMicro-HouseCallBackdoor.Win32.ZEGOST.SMAL02
RisingTrojan.Kryptik!1.D32C (CLASSIC)
YandexTrojan.GenAsa!gbD6tIFf5TA
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Farfli.BNZS!tr
AVGWin32:Trojan-gen

How to remove Generic.Malware.Lco.04FC702C?

Generic.Malware.Lco.04FC702C removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment