Malware

Generic.ShellCode.Marte.1.C4C28773 removal

Malware Removal

The Generic.ShellCode.Marte.1.C4C28773 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.ShellCode.Marte.1.C4C28773 virus can do?

  • Performs HTTP requests potentially not found in PCAP.
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Behavioural detection: Injection (Process Hollowing)
  • Behavioural detection: Injection (inter-process)
  • Binary file triggered YARA rule
  • Attempts to modify proxy settings
  • Anomalous binary characteristics
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Generic.ShellCode.Marte.1.C4C28773?



File Info:

name: 1F3195EFF807ECEDA24C.mlw
path: /opt/CAPEv2/storage/binaries/9420c9b7b0e45c2e5440c20cca570e991cbf151babf2537bf3dc08cf6d12c321
crc32: 996B36C8
md5: 1f3195eff807eceda24c74ea4c483f8c
sha1: 875b5d9b81e27ed8e5dc6fc8610813f68c5f59a9
sha256: 9420c9b7b0e45c2e5440c20cca570e991cbf151babf2537bf3dc08cf6d12c321
sha512: 15125f2c6d89af222fc092b20bf8a560d1913bf45ad54cbb6a94382fa8416054ba1b65261d0ba8e4ff3fbf825a41d7f27a9556dad3ea8e13f1ed7c4587a5c887
ssdeep: 48:6D640H+VzPiZerMpZytjWeyLhnhIAsYBlnfpJo+b23mRhHeq0JEI0oqtIzNi:WmHGzq6tjW33XlfprbSmRhsJNcy
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T18352C8B7163124E3CCB001FE06C30BF9DA75E8102756812987A0D76E647AA34BAAAF05
sha3_384: bab7dd6fa5ce5fa14be1608745a1bf0100bd9f55603ed0d45cc3528fd4b705b5a339ec5e55f756aa1919cf1b07a6a9f5
ep_bytes: 5589e556538b5d0c83fb017433508b45
timestamp: 2010-07-19 23:22:55


Version Info:

0: [No Data]

Generic.ShellCode.Marte.1.C4C28773 also known as:

MicroWorld-eScanGeneric.ShellCode.Marte.1.C4C28773
FireEyeGeneric.mg.1f3195eff807eced
SkyhighTrojan-FDRJ!1F3195EFF807
ALYacTrojan.Injector
MalwarebytesInject.Exploit.Shellcode.DDS
ZillyaTrojan.Sasfis.Win32.13107
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojan:Win32/CobaltStrike.5b3b
K7GWTrojan ( 00199e0c1 )
K7AntiVirusTrojan ( 00199e0c1 )
BitDefenderThetaGen:NN.ZedlaF.36802.aG4@aOwH9Nci
VirITTrojan.Win32.Sasfis.ASUL
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Inject.NJV
TrendMicro-HouseCallTROJ_SASFI.SMUS1
ClamAVWin.Trojan.CobaltStrike-7913051-0
KasperskyTrojan.Win32.Inject.aabsd
BitDefenderGeneric.ShellCode.Marte.1.C4C28773
NANO-AntivirusTrojan.Win32.Sasfis.ikcst
SUPERAntiSpywareTrojan.Agent/Gen-Injector
AvastWin32:MsfShell-B [Trj]
TencentTrojan.Win32.CobaltStrike.16001106
EmsisoftGeneric.ShellCode.Marte.1.C4C28773 (B)
BaiduWin32.Trojan.Inject.q
F-SecureTrojan.TR/Hijacker.Gen
DrWebTrojan.Inject.53051
VIPREGeneric.ShellCode.Marte.1.C4C28773
TrendMicroTROJ_SASFI.SMUS1
SophosTroj/Espion-AD
IkarusTrojan.Win32.Swrort
JiangminTrojan/Generic.aimz
WebrootTrojan:Win32/Swrort.A
GoogleDetected
AviraTR/Hijacker.Gen
VaristW32/Risk.JTUE-1585
Antiy-AVLTrojan/Win32.Sasfis
Kingsoftmalware.kb.a.930
MicrosoftTrojan:Win32/TurtleLoader.CS!dha
XcitiumTrojWare.Win32.Trojan.Injector.EJ0@2muj7a
ArcabitGeneric.ShellCode.Marte.1.C4C28773
ViRobotTrojan.Win32.Swrort.14336
ZoneAlarmTrojan.Win32.Inject.aabsd
GDataGeneric.ShellCode.Marte.1.C4C28773
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Injector.R8677
McAfeeTrojan-FDRJ!1F3195EFF807
TACHYONTrojan/W32.Inject.14336.Z
VBA32BScope.Trojan.Inject
Cylanceunsafe
PandaGeneric Malware
RisingHackTool.Swrort!1.6477 (CLASSIC)
MAXmalware (ai score=100)
MaxSecureTrojan.Malware.1520819.susgen
FortinetW32/Sasfis.ASUL!tr
AVGWin32:MsfShell-B [Trj]
DeepInstinctMALICIOUS
alibabacloudBackdoor:Win/CobaltStrike.c

How to remove Generic.ShellCode.Marte.1.C4C28773?

Generic.ShellCode.Marte.1.C4C28773 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment