Malware

Generic.Mint.Zamg.8.A7359736 removal instruction

Malware Removal

The Generic.Mint.Zamg.8.A7359736 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Generic.Mint.Zamg.8.A7359736 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Serbian
  • Authenticode signature is invalid
  • CAPE detected the Azorult malware family
  • Attempts to modify proxy settings
  • Collects information to fingerprint the system

How to determine Generic.Mint.Zamg.8.A7359736?


File Info:

name: BEB13FEB961502564C7D.mlw
path: /opt/CAPEv2/storage/binaries/98049d8c3047877f6d632b2cc91b391c29fed02d886785d77e4bef06322554f0
crc32: 4528F9B9
md5: beb13feb961502564c7d06055a49fe6c
sha1: 9fa06ed9e4163a41066fda92a75e6a4253fd32c8
sha256: 98049d8c3047877f6d632b2cc91b391c29fed02d886785d77e4bef06322554f0
sha512: 1e5f16daa925b8a894d60154e394af5077322e0b1ca37865d1f3d8a5494d769b091a5e7947c62c8b2703eb6ebf66eb65ff6006dede5ce7e913f98ddf4f3e42bf
ssdeep: 3072:DtYpwyUd/Xw63w71DVOO5y23mx6FfsdvYprM4wYDkFTie2FTVrYvOAspj0o:nw6YDY4xBp37DkFZmrYvOAspj0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EF243838796C08BDF2516BF559F88D47F4EAB8C75F4C94AF0B8085C88922A51B73172E
sha3_384: a865bcd0371b5811341acc71eda651cbed045b206ea899a5c71189b364cbb29968470b9c2c10c2b76a1e285ddcc42480
ep_bytes: e887330000e989feffff2da403000074
timestamp: 2017-07-04 11:40:38

Version Info:

FileVersion: 6.4.0.58
InternalName: tajihemur.exe
LegalCopyright: Copyright (C) 2018, vawegeno
ProductVersion: 6.4.0.58
Translation: 0x0649 0x04b0

Generic.Mint.Zamg.8.A7359736 also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Chapak.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanDeepScan:Generic.Mint.Zamg.8.A7359736
FireEyeGeneric.mg.beb13feb96150256
ALYacDeepScan:Generic.Mint.Zamg.8.A7359736
CylanceUnsafe
ZillyaTrojan.Chapak.Win32.45767
SangforTrojan.Win32.Save.a
K7AntiVirusRiskware ( 0040eff71 )
AlibabaTrojan:Win32/Chapak.248974ef
K7GWRiskware ( 0040eff71 )
CrowdStrikewin/malicious_confidence_80% (D)
CyrenW32/Agent.AUT.gen!Eldorado
SymantecPacked.Generic.525
ESET-NOD32a variant of Win32/Kryptik.GODK
APEXMalicious
Paloaltogeneric.ml
KasperskyTrojan.Win32.Chapak.bozl
BitDefenderDeepScan:Generic.Mint.Zamg.8.A7359736
AvastWin32:Malware-gen
TencentWin32.Trojan.Chapak.Pjwz
Ad-AwareDeepScan:Generic.Mint.Zamg.8.A7359736
EmsisoftDeepScan:Generic.Mint.Zamg.8.A7359736 (B)
ComodoTrojWare.Win32.Propagate.FA@80b9yb
DrWebTrojan.PWS.Stealer.24300
VIPRETrojan.Win32.Generic!BT
TrendMicroTrojan.Win32.SODINOK.SM.hp
McAfee-GW-EditionBehavesLike.Win32.Dropper.dh
SophosMal/Generic-R + Troj/Inject-DUD
IkarusTrojan.Win32.Crypt
GDataDeepScan:Generic.Mint.Zamg.8.A7359736
JiangminTrojan.Propagate.po
AviraHEUR/AGEN.1121569
Antiy-AVLTrojan/Generic.ASMalwS.2A514DF
ArcabitDeepScan:Generic.Mint.Zamg.8.A7359736
MicrosoftTrojan:Win32/Occamy.C98
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Fuerboos.C2905769
McAfeeTrojan-FPST!BEB13FEB9615
MAXmalware (ai score=100)
VBA32BScope.Trojan.Chapak
MalwarebytesTrojan.MalPack.GS
TrendMicro-HouseCallTrojan.Win32.SODINOK.SM.hp
RisingMalware.Obscure/Heur!1.A89E (CLASSIC)
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/Kryptik.GOFF!tr
BitDefenderThetaAI:Packer.F86A7B561F
AVGWin32:Malware-gen
Cybereasonmalicious.b96150
PandaGeneric Suspicious
MaxSecureTrojan.Malware.1728101.susgen

How to remove Generic.Mint.Zamg.8.A7359736?

Generic.Mint.Zamg.8.A7359736 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment