Malware

Generic.MSIL.Bladabindi.4F6B6DD6 removal guide

Malware Removal

The Generic.MSIL.Bladabindi.4F6B6DD6 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.MSIL.Bladabindi.4F6B6DD6 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • CAPE detected the Njrat malware family

How to determine Generic.MSIL.Bladabindi.4F6B6DD6?


File Info:

name: B73F7810D8F441101DD5.mlw
path: /opt/CAPEv2/storage/binaries/6ef7ae4412c1fed181ad6ed1a4ac218cf61036ce11dee2a51b601522d0461984
crc32: 903CE449
md5: b73f7810d8f441101dd52ff2487cd65d
sha1: 4e2fcb7334b4afc2406a37acaa5c2c842188d820
sha256: 6ef7ae4412c1fed181ad6ed1a4ac218cf61036ce11dee2a51b601522d0461984
sha512: baa19d01bab6defee15cc5c0f74051536ed23402c798d85f1781ec74122c33d19f6734f18a50688985b38a6d931e4d9fdef2a30ef2c1a1f02adfc7a432f53f41
ssdeep: 1536:j2CFQWqkqqoLc2mkiIjEwzGi1dDLDVgS:j2CmkqqoA2Ti5i1dbi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13C93E84977E56564E0BF56F79471F2004E34B48B1602E39D48F219AB0A33AC48F89FEB
sha3_384: e41b5d516ea293bcde62b4c494bbf66d63e0e7eee114160e0cc9ad3b2dd9989da13ceaa259807a13178b9ef2ca120325
ep_bytes: ff250020400000000000000000000000
timestamp: 2020-10-05 17:30:46

Version Info:

0: [No Data]

Generic.MSIL.Bladabindi.4F6B6DD6 also known as:

BkavW32.PrimeaClefAF.Trojan
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGeneric.MSIL.Bladabindi.4F6B6DD6
ClamAVWin.Packed.Generic-9795615-0
FireEyeGeneric.mg.b73f7810d8f44110
CAT-QuickHealTrojan.YakbeexMSIL.ZZ4
ALYacGeneric.MSIL.Bladabindi.4F6B6DD6
CylanceUnsafe
VIPREGeneric.MSIL.Bladabindi.4F6B6DD6
SangforSuspicious.Win32.Save.a
K7AntiVirusEmailWorm ( 00555f371 )
AlibabaBackdoor:MSIL/Bladabindi.63965f58
K7GWEmailWorm ( 00555f371 )
Cybereasonmalicious.0d8f44
VirITTrojan.Win32.MulDrop7.DOQR
CyrenW32/Trojan.BVX.gen!Eldorado
SymantecML.Attribute.HighConfidence
ElasticWindows.Trojan.Njrat
ESET-NOD32a variant of MSIL/Autorun.Spy.Agent.R
ZonerTrojan.Win32.87452
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderGeneric.MSIL.Bladabindi.4F6B6DD6
NANO-AntivirusTrojan.Win32.TrjGen.dkmeat
AvastWin32:KeyloggerX-gen [Trj]
TencentTrojan.Win32.Bladabindi.16000442
Ad-AwareGeneric.MSIL.Bladabindi.4F6B6DD6
EmsisoftWorm.Autorun (A)
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.MulDrop7.62625
TrendMicroBackdoor.MSIL.BLADABINDI.SMJJ
McAfee-GW-EditionTrojan-FIDH!B73F7810D8F4
Trapminemalicious.high.ml.score
SophosML/PE-A + Mal/MsilPKill-C
IkarusTrojan.MSIL.Bladabindi
GDataMSIL.Backdoor.Agent.AXJ
AviraTR/Dropper.Gen
ArcabitGeneric.MSIL.Bladabindi.4F6B6DD6
ZoneAlarmHEUR:Trojan.Win32.Generic
MicrosoftBackdoor:MSIL/Bladabindi.BN
GoogleDetected
AhnLab-V3Trojan/Win32.Bladabindi.R295982
Acronissuspicious
McAfeeTrojan-FIDH!B73F7810D8F4
MAXmalware (ai score=86)
VBA32Trojan.MSIL.Bladabindi.Heur
MalwarebytesAutoRun.Spyware.Stealer.DDS
TrendMicro-HouseCallBackdoor.MSIL.BLADABINDI.SMJJ
RisingBackdoor.njRAT!1.A096 (CLASSIC)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/Bladabindi.LX!tr
BitDefenderThetaGen:NN.ZemsilF.34796.fiW@aaryrBl
AVGWin32:KeyloggerX-gen [Trj]
PandaTrj/CI.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Generic.MSIL.Bladabindi.4F6B6DD6?

Generic.MSIL.Bladabindi.4F6B6DD6 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment