Generik.COSHHOY malicious file

The Generik.COSHHOY is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Generik.COSHHOY virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Generik.COSHHOY?


File Info:
name: A8FCCB797901F56982D1.mlw
path: /opt/CAPEv2/storage/binaries/694b50aff884bac0d2537f8938203df576df249cadb60e6b2bf842c0899b721e
crc32: 299DDF65
md5: a8fccb797901f56982d1cbad891df665
sha1: f7c349f2effb3f319b1b0f76778af6367c3efdfe
sha256: 694b50aff884bac0d2537f8938203df576df249cadb60e6b2bf842c0899b721e
sha512: 7396c88ddedad2a70d74508f1aa795019d59d91ae9eb89ce7b79014fdbfc6854744b816ba659003443b5512eace343c903e6820f518e20a04a34b62fcd53a20c
ssdeep: 3072:MrBBzuoDlLY/o9nBJkPomn9wX5BV9h9Zhk:MVBzuoDOMnYPomn9mph9Zh
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T154F308521EB0C6B2C46E54B627F652F0612DAEED03AE76121B8DED385B3C0D2BE14353
sha3_384: 8114cfdffe99c4607dd6cfdc589563378cf3799480357c1396c45368c686380ec08343fa03cec57942aefadb0df6d259
ep_bytes: 558bec83c4bc5657536a00e886010000
timestamp: 2018-01-18 09:54:22

Version Info:
0: [No Data]

Generik.COSHHOY also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Zbot.4!c
Cynet	Malicious (score: 99)
ALYac	Gen:Variant.Zbot.9
Malwarebytes	Generic.Malware/Suspicious
VIPRE	Gen:Variant.Zbot.9
Sangfor	Trojan.Win32.Zbot.Vx5l
Alibaba	Trojan:Win32/Generic.72f07bec
ESET-NOD32	a variant of Generik.COSHHOY
APEX	Malicious
BitDefender	Gen:Variant.Zbot.9
MicroWorld-eScan	Gen:Variant.Zbot.9
Avast	Win32:Malware-gen
Tencent	Malware.Win32.Gencirc.13affcea
Emsisoft	Gen:Variant.Zbot.9 (B)
F-Secure	Heuristic.HEUR/AGEN.1317392
McAfee-GW-Edition	GenericRXFM-NE!A8FCCB797901
Trapmine	suspicious.low.ml.score
FireEye	Gen:Variant.Zbot.9
Sophos	Mal/Generic-S
Avira	HEUR/AGEN.1317392
MAX	malware (ai score=83)
Antiy-AVL	Trojan/Win32.TSGeneric
Microsoft	Trojan:Win32/Wacatac.B!ml
Xcitium	Malware@#1luagke499qag
Arcabit	Trojan.Zbot.9
GData	Gen:Variant.Zbot.9
Google	Detected
McAfee	GenericRXFM-NE!A8FCCB797901
Cylance	unsafe
Panda	Trj/GdSda.A
Rising	Trojan.Generic@AI.89 (RDML:XSs/tXYqBVjSMRVQtN/Bdw)
Yandex	Trojan.Agent!GYJ8PIsujsw
Ikarus	Trojan.SuspectCRC
MaxSecure	Trojan.Malware.9069748.susgen
Fortinet	W32/PossibleThreat
AVG	Win32:Malware-gen
DeepInstinct	MALICIOUS
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Generik.COSHHOY?

Generik.COSHHOY removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X