Malware

What is “Generic.ShellCode.Marte.J.B85CA565”?

Malware Removal

The Generic.ShellCode.Marte.J.B85CA565 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Generic.ShellCode.Marte.J.B85CA565 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the StrongPity malware family
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Generic.ShellCode.Marte.J.B85CA565?


File Info:

name: B06433813AC756B159A6.mlw
path: /opt/CAPEv2/storage/binaries/cff743d6880adf8c65b605130e69cabee29aea6c74fbaebd2e6ed1710ab84e4e
crc32: FFE6AC6B
md5: b06433813ac756b159a65456ba4cd657
sha1: a9b1e68daf35774e141191b62349c57d6d5532cd
sha256: cff743d6880adf8c65b605130e69cabee29aea6c74fbaebd2e6ed1710ab84e4e
sha512: 8c956e1bd148cbbe02133f64e6f01231c2da7c16d472aa1afa98886def4f17f79493b12c56ce83fd1e0b03e96ab3cfbf45299b906841491514b1cd5c898344e4
ssdeep: 3072:7DuGWmvNB7QXJ+9LZSHnKSnpap1RVNde/x6vAw1RZzFPk2I111KYTI1Uk1AxFr:HuGWCaXJLHgeJwhHMzTy1
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D4149C42B4C1A571D57E0E308571C9E04A7EF8716E648D9B33D8223E9EA52D1AA33F37
sha3_384: 3d5f4023b6ff90156ca5990d965e1b137b5ae068f2a0e5015c555574f72c369a23c2ce53092837891593aa891df2ef5c
ep_bytes: 8bec609ce9bec20100ff558bec6a00ff
timestamp: 2019-02-04 10:49:29

Version Info:

0: [No Data]

Generic.ShellCode.Marte.J.B85CA565 also known as:

BkavW32.AIDetect.malware1
CynetMalicious (score: 100)
CylanceUnsafe
SangforSuspicious.Win32.Save.a
Cybereasonmalicious.daf357
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/StrongPity3.A
APEXMalicious
ClamAVWin.Trojan.StrongPity-7124525-0
KasperskyVHO:Trojan.Win32.StrongPity.gen
BitDefenderGeneric.ShellCode.Marte.J.B85CA565
MicroWorld-eScanGeneric.ShellCode.Marte.J.B85CA565
Ad-AwareGeneric.ShellCode.Marte.J.B85CA565
EmsisoftGeneric.ShellCode.Marte.J.B85CA565 (B)
VIPREGeneric.ShellCode.Marte.J.B85CA565
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.b06433813ac756b1
SophosGeneric ML PUA (PUA)
JiangminTrojan.StrongPity.cv
AviraTR/AD.PortoRansom.yqyoy
MAXmalware (ai score=81)
Antiy-AVLTrojan/Win32.StrongPity
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitGeneric.ShellCode.Marte.J.B85CA565
ViRobotTrojan.Win32.StrongPity.110928.B
GDataWin32.Trojan.PSE.1UBZG9P
GoogleDetected
AhnLab-V3Trojan/Win.Evo-gen.R535826
Acronissuspicious
ALYacGeneric.ShellCode.Marte.J.B85CA565
MalwarebytesMalware.AI.4009718011
PandaTrj/GdSda.A
RisingTrojan.Kryptik!8.8 (TFE:1:cWPPKukGaPL)
YandexTrojan.GenAsa!rCFWRKPr900
SentinelOneStatic AI – Malicious PE
FortinetW32/GenKryptik.GCTV!tr
BitDefenderThetaGen:NN.ZexaF.34796.lyW@ayPmtRci
AVGWin32:Evo-gen [Trj]
AvastWin32:Evo-gen [Trj]
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Generic.ShellCode.Marte.J.B85CA565?

Generic.ShellCode.Marte.J.B85CA565 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment