Malware

Generic.MSIL.Bladabindi.0CC7247C information

Malware Removal

The Generic.MSIL.Bladabindi.0CC7247C is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.MSIL.Bladabindi.0CC7247C virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Anomalous .NET characteristics
  • Uses Windows utilities for basic functionality
  • CAPE detected the njRat malware family
  • Creates a copy of itself

How to determine Generic.MSIL.Bladabindi.0CC7247C?



File Info:

name: FFBFB55DF35AC1F796CF.mlw
path: /opt/CAPEv2/storage/binaries/1520cb136f93b50f34d82858ae3254bb3ec77007a01ac68bc7e91a195fc804ee
crc32: C412F185
md5: ffbfb55df35ac1f796cfd615b81b61b0
sha1: f2542be25fe52d14b268c4a2698c5b92542c8711
sha256: 1520cb136f93b50f34d82858ae3254bb3ec77007a01ac68bc7e91a195fc804ee
sha512: 73bc87f1b3ba0fd3cc42b73f73fc4f1440c0435d4a3f5285e99e16c5c4b6d88b60ab51b9b93a9297a5b350d8aa64cc4635d47a948365a448e4b6f8346271b013
ssdeep: 384:/Ys5l7VL9skVQ42BkSv5dAsCGmqDm+jeI7GBsbh0w4wlAokw9OhgOL1vYRGOZzsT:v7/skCXkQossqtje3BKh0p29SgROp
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T119D21A1937B94906C8BC0B74C4319A2756F486032552DFBFDDD1A8DA9FA32E8294CFE1
sha3_384: 141a2dce8b6d8102de4923d141ca236c2c5e6042e9e55dcd577239d9387b547f41791f6e92f989e4ec0b9d2687bb0922
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-10-11 03:44:00


Version Info:

0: [No Data]

Generic.MSIL.Bladabindi.0CC7247C also known as:

BkavW32.AIDetectNet.01
CynetMalicious (score: 100)
CAT-QuickHealBackdoor.Bladabindi.AL3
McAfeeTrojan-FIGN
MalwarebytesBackdoor.Bladabindi.MSIL
ZillyaTrojan.Bladabindi.Win32.14961
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 700000121 )
K7GWTrojan ( 700000121 )
Cybereasonmalicious.df35ac
BaiduMSIL.Backdoor.Bladabindi.a
VirITTrojan.Win32.MSIL.AVDL
CyrenW32/MSIL_Bladabindi.A.gen!Eldorado
SymantecBackdoor.Ratenjay
ElasticWindows.Trojan.Njrat
ESET-NOD32MSIL/Bladabindi.F
APEXMalicious
ClamAVWin.Packed.Bladabindi-7086597-0
KasperskyTrojan.MSIL.Disfa.bqh
BitDefenderGeneric.MSIL.Bladabindi.0CC7247C
NANO-AntivirusTrojan.Win32.Dwn.dbxzfj
ViRobotBackdoor.Win32.Bladabindi.Gen.A
MicroWorld-eScanGeneric.MSIL.Bladabindi.0CC7247C
AvastMSIL:Agent-BXF [Trj]
RisingBackdoor.njRAT!1.9E49 (CLASSIC)
Ad-AwareGeneric.MSIL.Bladabindi.0CC7247C
EmsisoftGeneric.MSIL.Bladabindi.0CC7247C (B)
ComodoTrojWare.MSIL.Bladabindi.KX@52g0y5
DrWebTrojan.DownLoader13.37147
VIPREGeneric.MSIL.Bladabindi.0CC7247C
TrendMicroBKDR_BLADABI.SMC
McAfee-GW-EditionBehavesLike.Win32.Trojan.mm
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.ffbfb55df35ac1f7
SophosML/PE-A + Mal/Bbindi-C
IkarusTrojan.Msil
GDataMSIL.Backdoor.Bladabindi.AV
JiangminTrojanDropper.Autoit.dce
WebrootW32.Trojan.Gen
AviraTR/ATRAPS.Gen
MAXmalware (ai score=87)
Antiy-AVLTrojan/Generic.ASBOL.A8F4
ArcabitGeneric.MSIL.Bladabindi.0CC7247C
SUPERAntiSpywareTrojan.Agent/Gen-Barys
MicrosoftBackdoor:MSIL/Bladabindi.AJ
GoogleDetected
AhnLab-V3Trojan/Win32.Bladabindi.C202658
Acronissuspicious
ALYacGeneric.MSIL.Bladabindi.0CC7247C
VBA32Trojan.MSIL.Bladabindi.Heur
CylanceUnsafe
TrendMicro-HouseCallBKDR_BLBINDI.SMN
TencentTrojan.Win32.Bladabindi.16000442
YandexTrojan.RatJn.Gen.MG
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Agent.PPV!tr
BitDefenderThetaGen:NN.ZemsilF.34698.bmW@a4oSHrd
AVGMSIL:Agent-BXF [Trj]
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Generic.MSIL.Bladabindi.0CC7247C?

Generic.MSIL.Bladabindi.0CC7247C removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment