What is "Generic.Mulinex.C568D2CF"?

The Generic.Mulinex.C568D2CF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generic.Mulinex.C568D2CF virus can do?

Executable code extraction
Creates RWX memory
Expresses interest in specific running processes
Unconventionial language used in binary resources: Chinese (Simplified)
The binary likely contains encrypted or compressed data.
The executable is compressed using UPX
A scripting utility was executed
Uses Windows utilities for basic functionality
A process attempted to delay the analysis task by a long amount of time.
Empties the Recycle Bin, indicative of ransomware
Anomalous binary characteristics
Uses suspicious command line tools or Windows utilities

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Generic.Mulinex.C568D2CF?


File Info:
crc32: 23CD1405
md5: 80a51a529de790e3c8949190864ff8f7
name: SQLAGENTIEC.exe
sha1: 0ead152d41070b8efedea659b38133a5e07c5100
sha256: 95cb5547361b19af6c2c6b95096a1935fcfca694f8d0462cd5ad20f06c5b657d
sha512: 54ab9d8a766452543a32ab2ee02a17965886ebf7870d617d16cf815a44e4891c9865e8425be885c3cbd89d9a36d9c09a398a889ece02a1296c9e7a34bc0e74cc
ssdeep: 12288:lKJmS7ZV5hTHe3RZL/3x0GHJeTaW00s1NxeNtYMa2rVcI:lKL7ZV5Z+3n3PHJdgsVAtY
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed

Version Info:
LegalCopyright: Copyright (C) 2012
MIMEType: application/x-npAssistComm-plugin
InternalName: npAssistComm
FileVersion: 1, 0, 0, 1
ProductName: npAssistComm Dynamic Link Library
ProductVersion: 1, 0, 0, 1
FileDescription: npAssistComm Dynamic Link Library
OriginalFilename: npAssistComm.dll
Translation: 0x0409 0x04e4

Generic.Mulinex.C568D2CF also known as:

Bkav	W32.AIDetectVM.malware2
MicroWorld-eScan	Generic.Mulinex.C568D2CF
FireEye	Generic.mg.80a51a529de790e3
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic!BT
Sangfor	Malware
BitDefender	Generic.Mulinex.C568D2CF
Cybereason	malicious.29de79
Baidu	Win32.Trojan.Farfli.e
Cyren	W32/Trojan.CLL.gen!Eldorado
TotalDefense	Win32/Oflwr.A!crypt
APEX	Malicious
ClamAV	Multios.Coinminer.Miner-6781728-2
GData	Generic.Mulinex.C568D2CF
Kaspersky	not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen
Avast	Win32:CoinMiner-M [Trj]
Rising	Backdoor.Agent!1.B7E4 (RDMK:cmRtazowYJrsPDmXTwbvgO6lRkG7)
Endgame	malicious (moderate confidence)
Sophos	Troj/Agent-BCPO
F-Secure	Heuristic.HEUR/AGEN.1126575
Invincea	heuristic
Trapmine	malicious.high.ml.score
Emsisoft	Generic.Mulinex.C568D2CF (B)
Ikarus	Worm.Win32.Nuj
F-Prot	W32/Trojan.CLL.gen!Eldorado
Webroot	W32.Malware.Gen
Avira	HEUR/AGEN.1126575
Antiy-AVL	GrayWare/Win32.FlyStudio.a
Arcabit	Generic.Mulinex.C568D2CF
ZoneAlarm	not-a-virus:HEUR:RiskTool.Win32.BitMiner.gen
Microsoft	Trojan:Win32/Wacatac.C!ml
Acronis	suspicious
VBA32	BScope.Trojan.CMY3U
MAX	malware (ai score=80)
Ad-Aware	Generic.Mulinex.C568D2CF
Malwarebytes	RiskWare.BitCoinMiner
ESET-NOD32	a variant of Win32/CoinMiner.BUF
SentinelOne	DFI – Malicious PE
eGambit	Unsafe.AI_Score_100%
Fortinet	W32/QQWare.A!tr
BitDefenderTheta	Gen:NN.ZexaF.34108.GmKfaOJaRUpj
AVG	Win32:CoinMiner-M [Trj]
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_80% (D)
MaxSecure	Trojan.Malware.300983.susgen

How to remove Generic.Mulinex.C568D2CF?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

What is “Generic.Mulinex.C568D2CF”?