Malware

Generic.Malware.Yd!sp.12CF2AB3 (file analysis)

Malware Removal

The Generic.Malware.Yd!sp.12CF2AB3 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Malware.Yd!sp.12CF2AB3 virus can do?

  • Reads data out of its own binary image
  • Attempts to modify Internet Explorer’s start page
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Network activity detected but not expressed in API logs
  • Attempts to modify browser security settings

How to determine Generic.Malware.Yd!sp.12CF2AB3?



File Info:

crc32: D125A5A7
md5: 52d7ae6a95823e9c02b949ff90926568
name: sinco.exe
sha1: fb3be6a4d4f95ec9327bf2fd62a752a4e8911832
sha256: fb90374e46d132cc2e0762ef66aee2015344977c52841db043ad108f12313a73
sha512: a3e4f78d24f11b7cf1b778eff3dcfc86e44ebd994e63a0068d117d5e8a7094f5ade14368fe884d54c61f2f20b18d39e5aed193c8429ac8eb683c25f1092d557b
ssdeep: 384:e8Dr+sQ8zL+/JRrhr/y8vtbNAF4cHjmqLCJPEfhSvLTLKLFwZIz/o:ppmJdJy8vNQ/iqGJPEfhSvLTLKLFwZIU
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

LegalCopyright: Copyright 2001-2006 by Jan Vorel
InternalName: Selfreg.exe
FileVersion: 2.25
CompanyName: ctuser
Comments: Published under the GNU General Public License; homepage: http://www.ctuser.net; Compressed with upx: http://upx.sourceforge.net
ProductName: Reg2exe 'converter'
ProductVersion: 2.25
FileDescription: Reg2exe 'converter'
OriginalFilename: Selfreg.exe
Translation: 0x0409 0x04b0

Generic.Malware.Yd!sp.12CF2AB3 also known as:

BkavW32.Mainpage.Adware
MicroWorld-eScanDeepScan:Generic.Malware.Yd!sp.12CF2AB3
FireEyeGeneric.mg.52d7ae6a95823e9c
CAT-QuickHealTrojan.Startpage
McAfeeArtemis!52D7AE6A9582
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
BitDefenderDeepScan:Generic.Malware.Yd!sp.12CF2AB3
Cybereasonmalicious.a95823
Invinceaheuristic
APEXMalicious
ClamAVWin.Trojan.Agent-192952
GDataDeepScan:Generic.Malware.Yd!sp.12CF2AB3
KasperskyHEUR:Trojan.Win32.StartPage
Ad-AwareDeepScan:Generic.Malware.Yd!sp.12CF2AB3
McAfee-GW-EditionArtemis
EmsisoftDeepScan:Generic.Malware.Yd!sp.12CF2AB3 (B)
JiangminTrojan/Agent.brsg
MAXmalware (ai score=81)
ArcabitDeepScan:Generic.Malware.Yd!sp.12CF2AB3
SUPERAntiSpywareTrojan.SimitraD-Loader
ZoneAlarmUDS:DangerousObject.Multi.Generic
MicrosoftTrojan:Win32/Wacatac.C!ml
ALYacDeepScan:Generic.Malware.Yd!sp.12CF2AB3
ZonerTrojan.Win32.77483
RisingMalware.Heuristic!ET#80% (RDMK:cmRtazqUp/3IEROqYndyIwygiO2e)
WebrootW32.Malware.gen
AVGFileRepMalware

How to remove Generic.Malware.Yd!sp.12CF2AB3?

Generic.Malware.Yd!sp.12CF2AB3 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment