Generik.GHTGCJL (file analysis)

The Generik.GHTGCJL is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Generik.GHTGCJL virus can do?

• Executable code extraction
• Creates RWX memory
• Reads data out of its own binary image
• A process created a hidden window
• The binary likely contains encrypted or compressed data.
• Network activity detected but not expressed in API logs
• Anomalous binary characteristics

How to determine Generik.GHTGCJL?

File Info:
crc32: 38537D6E
md5: 9859c1275a09eff7ebbe703933695b0c
name: 9859C1275A09EFF7EBBE703933695B0C.mlw
sha1: 61011797578d92f5d49ff19c1c07522328682296
sha256: 3ee1aeeacc6fd3c792af90f2bf0faba3eb71fc8aad0a9e9b1950f75561eed3eb
sha512: 0a8df37f939a11b450ea29f2f1560d42a05985f747270f2044296a8b9f6b419da312f2e57e9adb09732f715fffa5f2f19b3bbbbf6a012872f71271f767fab056
ssdeep: 6144:VQqgIgqVWCUPoXptT7DpDkgD9HJHEM4m8vp:LgqQCmmptNDkgxJSmEp
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:
0: [No Data]

Generik.GHTGCJL also known as:

How to remove Generik.GHTGCJL?

• Download and install GridinSoft Anti-Malware.
• Open GridinSoft Anti-Malware and perform a “Standard scan“.
• “Move to quarantine” all items.
• Open “Tools” tab – Press “Reset Browser Settings“.
• Select proper browser and options – Click “Reset”.
• Restart your computer.