Malware

Generic.ZegostB.3D64BB77 removal

Malware Removal

The Generic.ZegostB.3D64BB77 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generic.ZegostB.3D64BB77 virus can do?

  • Attempts to connect to a dead IP:Port (1 unique times)
  • A process attempted to delay the analysis task.
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Uses Windows utilities for basic functionality
  • Deletes its original binary from disk
  • Attempts to repeatedly call a single API many times in order to delay analysis time
  • Installs itself for autorun at Windows startup
  • Creates a hidden or system file
  • Creates a copy of itself

How to determine Generic.ZegostB.3D64BB77?



File Info:

crc32: 95A154B8
md5: 61f893b95c07414ef3ef7ee7f95420c3
name: sn.exe
sha1: ec44ae2586d1b3946f12c2ce0ffa0839a5010705
sha256: d56df91747931e36d9acfad4372bb32991d08da01fa3f1cd13892459750cbf27
sha512: fe8bedc984797175110e7f79848e6637867b1bc3c1013de823327878b52fecd7c146aeaf75a6fb4640a76e0754e4cf127af819f772a2d24cdc6a4fe3a98d82a4
ssdeep: 384:NfuPb0HzJw4a0UkqAV4fXt2C849tFrbUiR/7FxObMBPB70UJMzixvtVh0:ooTJw4a0R5+MC849tnxYUJMio
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed


Version Info:

0: [No Data]

Generic.ZegostB.3D64BB77 also known as:

BkavW32.AIDetectVM.malware
MicroWorld-eScanGeneric.ZegostB.3D64BB77
FireEyeGeneric.mg.61f893b95c07414e
CAT-QuickHealTrojan.Mauvaise.SL1
McAfeeArtemis!61F893B95C07
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusTrojan ( 004b78a51 )
BitDefenderGeneric.ZegostB.3D64BB77
K7GWTrojan ( 004b78a51 )
Cybereasonmalicious.95c074
TrendMicroBKDR_ZEGOST.SM37
F-ProtW32/QQhelper.C.gen!Eldorado
TotalDefenseWin32/PackedBaidu
APEXMalicious
AvastWin32:Dh-A [Heur]
ClamAVWin.Trojan.Generic-6305873-0
GDataGeneric.ZegostB.3D64BB77
KasperskyHEUR:Backdoor.Win32.Generic
AlibabaBackdoor:Win32/Venik.ca1b4f0e
NANO-AntivirusTrojan.Win32.Farfli.fabycr
AegisLabTrojan.Win32.Generic.m!c
TencentMalware.Win32.Gencirc.10b3a9b9
Ad-AwareGeneric.ZegostB.3D64BB77
EmsisoftGeneric.ZegostB.3D64BB77 (B)
ComodoTrojWare.Win32.GameThief.Magania.~NWABU@18g2sq
F-SecureTrojan.TR/Spy.Gen
DrWebTrojan.DownLoader26.35525
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Generic.mc
MaxSecureTrojan.Malware.7175197.susgen
Trapminemalicious.high.ml.score
SophosMal/Behav-024
IkarusBackdoor.Win32.Venik
CyrenW32/S-3daeeeba!Eldorado
JiangminTrojan.Vehidis.jf
WebrootW32.Worm.Gen
AviraTR/Spy.Gen
MAXmalware (ai score=86)
Antiy-AVLTrojan[Backdoor]/Win32.AGeneric
Endgamemalicious (moderate confidence)
ArcabitGeneric.ZegostB.3D64BB77
ZoneAlarmHEUR:Backdoor.Win32.Generic
MicrosoftBackdoor:Win32/Venik.S!bit
AhnLab-V3Trojan/Win32.RL_AutoRun.R263968
Acronissuspicious
VBA32BScope.Trojan.Downloader
ALYacGeneric.ZegostB.3D64BB77
TACHYONTrojan/W32.Agent.43520.ACK
MalwarebytesTrojan.Dropper.UPX
PandaTrj/Genetic.gen
ZonerTrojan.Win32.86668
ESET-NOD32Win32/Farfli.BLH
TrendMicro-HouseCallBKDR_ZEGOST.SM37
RisingBackdoor.Farfli!1.64B3 (CLOUD)
YandexTrojan.Farfli!DrPIh6iporE
SentinelOneDFI – Malicious PE
eGambitUnsafe.AI_Score_99%
FortinetW32/Farfli.BLH!tr
BitDefenderThetaAI:Packer.5F511F5A1E
AVGWin32:Dh-A [Heur]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/Backdoor.d55

How to remove Generic.ZegostB.3D64BB77?

Generic.ZegostB.3D64BB77 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment