Malware

Generic.Mulinex.632706D4 malicious file

Malware Removal

The Generic.Mulinex.632706D4 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Mulinex.632706D4 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Presents an Authenticode digital signature
  • Dynamic (imported) function loading detected
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Generic.Mulinex.632706D4?



File Info:

name: 2577A2C7A5EDEFB8E12A.mlw
path: /opt/CAPEv2/storage/binaries/7d5e4d8d2585a51073698c7f03e491c199e76c9f4ea0ef54ed2d3152d1c20d0f
crc32: 07FCD1B9
md5: 2577a2c7a5edefb8e12acd0e6d33f3e6
sha1: bea4e6181852b0f56c1de4bbc467b7a8f6ac4e31
sha256: 7d5e4d8d2585a51073698c7f03e491c199e76c9f4ea0ef54ed2d3152d1c20d0f
sha512: 0b42b172443cb192f16bd68363538e3ffa988b91297e7844c16a3faa1b4098e2f7a005c82003e4b6d82fc8a8af80e1fc84bee01409adf9fbf166dc4a53091dc0
ssdeep: 12288:5g0kk4Mqqi4XuuJwtPslNP38wwio8hWs8qaOG7xw:O0qoRwtEz8wfo8LaOGdw
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T126C4121F261494A1D88C8C30C9A78AB96E24FD52CD416A8FFAB47F4E3D367C0B11658F
sha3_384: d7ff64f0da4eb22d635c9ef75549fd6b31fd0fb65417d169009ad5419b46d33fc295100a653bb9ebb3e9a63683e5bbad
ep_bytes: 60be00604d008dbe00b0f2ff5783cdff
timestamp: 2021-12-10 19:21:15


Version Info:

CompanyName: Babylon Software Ltd.
FileDescription: Babylon Setup SE
FileVersion: 10.1.0.0
InternalName: Setup Stub
LegalCopyright: Copyright © Babylon Software Ltd. 1997-2016
OriginalFilename: SetupStub.exe
ProductName: Babylon Setup
ProductVersion: 10.1.0.0
Translation: 0x0409 0x04b0

Generic.Mulinex.632706D4 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGeneric.Mulinex.632706D4
FireEyeGeneric.mg.2577a2c7a5edefb8
CAT-QuickHealPUA.BitminRI.S9338387
ALYacGeneric.Mulinex.632706D4
CylanceUnsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 005246d51 )
K7GWTrojan ( 005246d51 )
Cybereasonmalicious.7a5ede
BaiduWin32.Trojan.Farfli.e
CyrenW32/Trojan.CLL.gen!Eldorado
SymantecMiner.XMRig
ESET-NOD32a variant of Win32/CoinMiner.BUF
APEXMalicious
AvastWin32:CoinMiner-M [Trj]
ClamAVMultios.Coinminer.Miner-6781728-2
Kasperskynot-a-virus:HEUR:RiskTool.Win32.BitMiner.gen
BitDefenderGeneric.Mulinex.632706D4
Ad-AwareGeneric.Mulinex.632706D4
EmsisoftGeneric.Mulinex.632706D4 (B)
ComodoTrojWare.Win32.Agent.OSCF@5rs7jr
McAfee-GW-EditionArtemis!Trojan
SophosML/PE-A + Troj/Agent-BCPO
GDataWin32.Trojan.PSE.12FI8JT
JiangminTrojan.Miner.mmk
AviraHEUR/AGEN.1136186
Antiy-AVLTrojan/Generic.ASCommon.FA
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 100)
Acronissuspicious
McAfeeGenericRXAA-AA!2577A2C7A5ED
MAXmalware (ai score=87)
VBA32BScope.Backdoor.Poison
MalwarebytesRiskWare.BitCoinMiner
RisingMalware.Heuristic!ET#98% (RDMK:cmRtazoh3vev46Q77jxh0mKmVmVa)
YandexTrojan.GenAsa!CnhHeVv4fes
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/CoinMiner.ELG!tr.pws
BitDefenderThetaGen:NN.ZexaF.34084.ImLfaabuD7hj
AVGWin32:CoinMiner-M [Trj]
PandaTrj/Genetic.gen

How to remove Generic.Mulinex.632706D4?

Generic.Mulinex.632706D4 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment