Malware

About “Generik.NFRHEUI” infection

Malware Removal

The Generik.NFRHEUI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Generik.NFRHEUI virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Generik.NFRHEUI?



File Info:

name: 449FDB0B204BA5D54257.mlw
path: /opt/CAPEv2/storage/binaries/573154d71e7a960860f3717910a2dace64eab705cd82fd0eccc678dbc63ce510
crc32: 1E58D4F0
md5: 449fdb0b204ba5d54257a145715570b6
sha1: 026f6caea54f5aae263bbb7928416124bb02683d
sha256: 573154d71e7a960860f3717910a2dace64eab705cd82fd0eccc678dbc63ce510
sha512: 43e1922ef6a49d5157255acc1dbb6000dcb5df6d803885aad173b49cc1eeb9885a21665ded9d6d1114aa4fcfffb072a1a04f0a457242039ba9f6884bef56a900
ssdeep: 192:1i6fw97C7RBbz6Uo6fw97C7RBbzw6fw97C7RBbzdfw97C7RBbze6fw97C7RBbz9q:13fw97cHpfw97cRfw97cdfw97cjfw97x
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1D502CA42ABE235A7CFDA7A31828DC9B18B6C1EF20538357CC7457C01BD3B8B9965B484
sha3_384: 6a640b4525f20479e7f93e68353b9ccfcdbdb15539f5e0198a78c7720dff6ffe30e65001030eaee1baeca514ec650c90
ep_bytes: 606af5ff156840400083f8ff7448a3c0
timestamp: 2013-07-01 18:37:07


Version Info:

0: [No Data]

Generik.NFRHEUI also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.449fdb0b204ba5d5
McAfeeArtemis!449FDB0B204B
MalwarebytesMalware.Heuristic.1003
SangforTrojan.Win32.Malware.gen
CrowdStrikewin/malicious_confidence_70% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.NFRHEUI
APEXMalicious
Paloaltogeneric.ml
AlibabaTrojan:Win32/PackBackdoor.b5855287
NANO-AntivirusTrojan.Win32.Crypted.fchfyh
AvastWin32:Malware-gen
TencentWin32.Trojan.Crypt.Pctb
McAfee-GW-EditionArtemis
Trapminemalicious.moderate.ml.score
IkarusTrojan.Crypt
AviraTR/Crypt.XPACK.Gen
MicrosoftTrojan:Win32/Occamy.C57
GoogleDetected
MAXmalware (ai score=100)
CylanceUnsafe
TrendMicro-HouseCallTROJ_GEN.R002H0CBJ22
RisingTrojan.Generic@AI.85 (RDML:3FxTDOOtEwQSYbjh3Wh72g)
MaxSecureTrojan.Malware.74597521.susgen
BitDefenderThetaGen:NN.ZexaF.34606.aqW@aOAd65h
AVGWin32:Malware-gen
Cybereasonmalicious.b204ba
PandaTrj/Genetic.gen

How to remove Generik.NFRHEUI?

Generik.NFRHEUI removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment