Malware

Generic.Sdbot.7A8FBF2A removal guide

Malware Removal

The Generic.Sdbot.7A8FBF2A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.Sdbot.7A8FBF2A virus can do?

  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Uses Windows utilities for basic functionality
  • Creates a copy of itself
  • Deletes executed files from disk

How to determine Generic.Sdbot.7A8FBF2A?



File Info:

name: E8E3D20D9B60D14F7D95.mlw
path: /opt/CAPEv2/storage/binaries/fb5f5961add2a091abf74a1504abcdec5592edcb513313ac4999a05252a24e3d
crc32: EC37A177
md5: e8e3d20d9b60d14f7d95525977998dd0
sha1: 0ab2e08d684e5e68ab6114cbd7c8d1daf4e15c6e
sha256: fb5f5961add2a091abf74a1504abcdec5592edcb513313ac4999a05252a24e3d
sha512: 04d86533824e7d5496e1d8ecb0d884d11153aa3cea7ea089570fa82a788a78a230be831d8837105452b4e0b279cae09d5ce50b7684608927bed318e4787a827b
ssdeep: 3072:v0ZRk2EuckJjU9OU8HJQgjB37lI5Zrxd8Kq+lJ6H02eMemwU+ceKi9bipPnZVKry:s/k2Eucyw9sHJPjB3aXrszqJIzetH9bU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E01423E1DE614D51C6A804B6CC2BF7288D19B2688DAD69D9FEC468B1FD707E0B35240B
sha3_384: 975b8e1f2f6282653c6d5e3b67bcd5c49871a3a2c2aebea105483a8b91f6f1844de412c7727c4f518dc1aced3564ffdc
ep_bytes: eb425d8d7d0c8b6d008b77f88b5ffc31
timestamp: 2011-04-06 14:56:47


Version Info:

0: [No Data]

Generic.Sdbot.7A8FBF2A also known as:

LionicHeuristic.File.Generic.00×1!p
MicroWorld-eScanDeepScan:Generic.Sdbot.7A8FBF2A
FireEyeGeneric.mg.e8e3d20d9b60d14f
ALYacDeepScan:Generic.Sdbot.7A8FBF2A
CylanceUnsafe
VIPREDeepScan:Generic.Sdbot.7A8FBF2A
SangforBackdoor.Win32.Rbot.1
K7AntiVirusTrojan ( 0032c9421 )
AlibabaExploit:Win32/Klone.941c51d2
K7GWTrojan ( 0032c9421 )
Cybereasonmalicious.d9b60d
BaiduWin32.Trojan.Kryptik.bh
CyrenW32/Rbot.M.gen!Eldorado
SymantecW32.IRCBot.Gen
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/IRCBot.AHE
APEXMalicious
CynetMalicious (score: 100)
KasperskyPacked.Win32.Klone.bz
BitDefenderDeepScan:Generic.Sdbot.7A8FBF2A
NANO-AntivirusTrojan.Win32.ModUpx.eksvbz
SUPERAntiSpywareTrojan.Agent/Gen-Rbot
AvastWin32:Evo-gen [Trj]
RisingMalware.Undefined!8.C (TFE:5:YdoiYq8pDlR)
Ad-AwareDeepScan:Generic.Sdbot.7A8FBF2A
EmsisoftDeepScan:Generic.Sdbot.7A8FBF2A (B)
ComodoPacked.Win32.MUPX.Gen@24tbus
F-SecureTrojan.TR/Crypt.ULPM.Gen
DrWebBackDoor.IRC.Rxbot.69
ZillyaTrojan.IRCBot.Win32.8322
TrendMicroTROJ_SPNR.35EF13
McAfee-GW-EditionW32/Sdbot.b.gen.g
Trapminemalicious.high.ml.score
SophosML/PE-A + Troj/Agent-MWZ
SentinelOneStatic AI – Malicious PE
GDataDeepScan:Generic.Sdbot.7A8FBF2A
AviraTR/Crypt.ULPM.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan[Packed]/Win32.Klone.bz
ArcabitDeepScan:Generic.Sdbot.7A8FBF2A
ZoneAlarmPacked.Win32.Klone.bz
MicrosoftTrojan:Win32/Occamy.C
GoogleDetected
McAfeeGeneric.atg-FAGT!E8E3D20D9B60
VBA32SScope.Backdoor.Sdbot
MalwarebytesMalware.Heuristic.1008
TrendMicro-HouseCallTROJ_SPNR.35EF13
TencentWin32.Packed.Klone.Anpj
YandexTrojan.GenAsa!fiIig4d88OM
IkarusBackdoor.Win32.Rbot
MaxSecurePacked.Klone.bz
BitDefenderThetaAI:Packer.3C9B72C61E
AVGWin32:Evo-gen [Trj]
PandaTrj/Genetic.gen
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Generic.Sdbot.7A8FBF2A?

Generic.Sdbot.7A8FBF2A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment