Malware

Generik.EILQHGK malicious file

Malware Removal

The Generik.EILQHGK is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.EILQHGK virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • HTTPS urls from behavior.
  • DNS query to a paste site or service detected
  • Authenticode signature is invalid
  • Attempts to modify proxy settings

Related domains:

pastebin.com

How to determine Generik.EILQHGK?



File Info:

name: F351E3FBBDF649C305FD.mlw
path: /opt/CAPEv2/storage/binaries/caebb32e8672c6be2bc5be39ddfd4ec25762cb7b09d4face2a616da27f8ded79
crc32: 41DF668D
md5: f351e3fbbdf649c305fd1daf3f00b2f9
sha1: 0aa86e71e61ec019ca9b34d0bf3e821e10ee051d
sha256: caebb32e8672c6be2bc5be39ddfd4ec25762cb7b09d4face2a616da27f8ded79
sha512: 8cc00d1e3604f813e460c86e2a44cc397708e6f279629330cca60d2fb3c3cc95c83baa2f5a4d74b8de95aab21d8251c70ace2138c8ee96d1575e3c34a6073345
ssdeep: 384:7m6a1/NKbQC23IS7udwp9zspa5LZqmlcNwIuuXeqLrdqCeqVsF89TjGNvGhLCtAF:1a+V9kH87Leqy8UNvGhmtAaJODuw
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1F0D25B53F65AD432D11082B02576E7B2A97B7D318F6082C77BE05F7A0A311E1ADF1A1E
sha3_384: 6e555323f03fde2a2b8b15121d03e8a64cacd7e6bf3bff090ea93917ce7eb824b6be9c8fe320a031c489c1050d9fdf55
ep_bytes: e8e2050000e974feffffc20000558bec
timestamp: 2021-11-23 17:02:12


Version Info:

0: [No Data]

Generik.EILQHGK also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Agent.a!c
MicroWorld-eScanTrojan.GenericKD.47519621
FireEyeGeneric.mg.f351e3fbbdf649c3
McAfeeArtemis!F351E3FBBDF6
CylanceUnsafe
ZillyaDownloader.Agent.Win32.455155
AlibabaTrojanDownloader:Win32/Generic.99bec5e7
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.EILQHGK
TrendMicro-HouseCallTROJ_GEN.R002H0CKQ21
Paloaltogeneric.ml
KasperskyHEUR:Trojan-Downloader.Win32.Agent.gen
BitDefenderTrojan.GenericKD.47519621
AvastWin32:Trojan-gen
Ad-AwareTrojan.GenericKD.47519621
McAfee-GW-EditionArtemis
EmsisoftTrojan.GenericKD.47519621 (B)
IkarusTrojan.SuspectCRC
GridinsoftRansom.Win32.Wacatac.sa
GDataTrojan.GenericKD.47519621
VBA32BScope.Trojan.SelfDel
MAXmalware (ai score=89)
APEXMalicious
RisingTrojan.Generic@ML.82 (RDML:tz9sZpAbDtaQrwoQYtEeRA)
FortinetW32/PossibleThreat
AVGWin32:Trojan-gen
PandaTrj/GdSda.A
MaxSecureTrojan.Malware.300983.susgen

How to remove Generik.EILQHGK?

Generik.EILQHGK removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment