Malware

Generik.CHCSSFF removal guide

Malware Removal

The Generik.CHCSSFF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.CHCSSFF virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (2 unique times)
  • Creates RWX memory
  • Performs some HTTP requests
  • Uses Windows utilities for basic functionality
  • A process attempted to delay the analysis task by a long amount of time.
  • Creates a hidden or system file
  • Attempts to modify proxy settings
  • Anomalous binary characteristics

Related domains:

www.bing.com
authd.feronok.com

How to determine Generik.CHCSSFF?



File Info:

crc32: 79C01A1F
md5: 3d7f01b8215fb447a4786b40f937229c
name: 3D7F01B8215FB447A4786B40F937229C.mlw
sha1: 694ecc170b043fe3bcca0e79f93221046685b49c
sha256: bea4b9483f25ce74c1116e05cc655c4735bf33ef90ded340c56e55218c26b0e7
sha512: ecb06a5d295a0f7f4f7aeda896871092d12da8e6e5020f76986799430e2550f2b0626d6e229f50941d014f7d42881aafb87ca4c7e61ca642e96e565833173fb1
ssdeep: 12288:PGSo5NbVfaqzIIjF70wfPcS8jRjfcnbKIalaiSZ+P56IRmAAHtdGNLWdzriRHoc:PGSo3bVCqzIIjF70wncTjRDcnbTaWIg
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2009-2011 Oracle Corporation
InternalName: VBoxSVC
FileVersion: 5.4.2.854
CompanyName: Oracle Corporation
SpecialBuild: r144849
ProductName: Oracle VM VirtualBox
ProductVersion: 5.4.2.854
FileDescription: VirtualBox Interface
OriginalFilename: Whole.dll

Generik.CHCSSFF also known as:

Elasticmalicious (high confidence)
CylanceUnsafe
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.CHCSSFF
APEXMalicious
CynetMalicious (score: 99)
McAfee-GW-EditionArtemis!Trojan
AviraTR/AD.UrsnifDropper.isclb
GDataWin32.Trojan-Spy.Ursnif.OMD32O
McAfeeArtemis!3D7F01B8215F
VBA32BScope.TrojanSpy.Ursnif
IkarusWin32.Outbreak

How to remove Generik.CHCSSFF?

Generik.CHCSSFF removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment