Malware

What is “Generic.MSIL.Bladabindi.70D84546”?

Malware Removal

The Generic.MSIL.Bladabindi.70D84546 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.MSIL.Bladabindi.70D84546 virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Uses Windows utilities for basic functionality
  • Sniffs keystrokes
  • Installs itself for autorun at Windows startup

Related domains:

maj.majnetgroup.net

How to determine Generic.MSIL.Bladabindi.70D84546?



File Info:

crc32: 8C260B25
md5: 2ddbd6874445421ffe661c742e1fdd2f
name: 2DDBD6874445421FFE661C742E1FDD2F.mlw
sha1: f045af62159a16d17be2f51e0f78281f58e5ec83
sha256: bf2a921f905ef2e1e191eccbfdb98e3e249c7aebe7d27b24dbe1de35c4707d6f
sha512: 96256516279095e96aafc2e71161ca3ac392e1ce055a20286838b5b38fc702898478f76954a381866394cb35cc704c885c101be53c6fb9606dd828b500b421a5
ssdeep: 384:WMCINl7rZt4AgSTnd5fGmjmumqD418+eYKGBsbh0w4wlAokw9OhgOL1vYRGOZzp:f7v4AgMdgmjAq8XeIBKh0p29SgRzn
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

0: [No Data]

Generic.MSIL.Bladabindi.70D84546 also known as:

Elasticmalicious (high confidence)
DrWebTrojan.DownLoader10.20382
MicroWorld-eScanGeneric.MSIL.Bladabindi.70D84546
FireEyeGeneric.mg.2ddbd6874445421f
CAT-QuickHealBackdoor.Bladabindi.AL3
ALYacGeneric.MSIL.Bladabindi.70D84546
CylanceUnsafe
VIPRETrojan.MSIL.Bladabindi.agxy (v)
CrowdStrikewin/malicious_confidence_100% (D)
BitDefenderGeneric.MSIL.Bladabindi.70D84546
K7GWTrojan ( 700000121 )
K7AntiVirusTrojan ( 700000121 )
BitDefenderThetaGen:NN.ZemsilF.34670.bmW@aSuaRvg
CyrenW32/MSIL_Bladabindi.A.gen!Eldorado
SymantecBackdoor.Ratenjay
TotalDefenseWin32/DotNetDl.A!generic
APEXMalicious
ClamAVWin.Trojan.B-468
KasperskyHEUR:Trojan.Win32.Generic
NANO-AntivirusTrojan.Win32.Dwn.dbxzfj
ViRobotBackdoor.Win32.Bladabindi.Gen.A
Ad-AwareGeneric.MSIL.Bladabindi.70D84546
SophosML/PE-A + Mal/Bbindi-C
ComodoTrojWare.MSIL.Bladabindi.KX@52g0y5
F-SecureTrojan.TR/ATRAPS.Gen
BaiduMSIL.Backdoor.Bladabindi.a
ZillyaTrojan.Bladabindi.Win32.14960
TrendMicroBKDR_BLADABI.SMC
McAfee-GW-EditionBehavesLike.Win32.Trojan.mm
EmsisoftGeneric.MSIL.Bladabindi.70D84546 (B)
IkarusBackdoor.MSIL.Bladabindi
JiangminTrojanDropper.Autoit.dce
MaxSecureTrojan.Malware.300983.susgen
AviraTR/ATRAPS.Gen
Antiy-AVLTrojan[Backdoor]/MSIL.Bladabindi.as
KingsoftHeur.SSC.2678338.1216.(kcloud)
MicrosoftBackdoor:MSIL/Bladabindi.AJ
ArcabitGeneric.MSIL.Bladabindi.70D84546
SUPERAntiSpywareTrojan.Agent/Gen-Barys
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataMSIL.Backdoor.Bladabindi.AV
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Bladabindi.C202658
Acronissuspicious
McAfeeTrojan-FIGN
MAXmalware (ai score=83)
VBA32Trojan.MSIL.Disfa
MalwarebytesTrojan.Agent.MSIL
ESET-NOD32a variant of MSIL/Bladabindi.AS
TrendMicro-HouseCallBKDR_BLADABI.SMC
RisingBackdoor.Njrat!1.9E49 (CLASSIC)
YandexTrojan.RatJn.Gen.MG
SentinelOneStatic AI – Malicious PE
eGambitRAT.njRat
FortinetMSIL/Agent.PPV!tr
WebrootW32.Backdoor.Gen
AVGMSIL:Agent-BXF [Trj]
Cybereasonmalicious.744454
AvastMSIL:Agent-BXF [Trj]
Qihoo-360HEUR/QVM03.0.AA9B.Malware.Gen

How to remove Generic.MSIL.Bladabindi.70D84546?

Generic.MSIL.Bladabindi.70D84546 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment