Categories: Malware

GenPack:Generic.Mulinex.2930E871 removal

The GenPack:Generic.Mulinex.2930E871 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What GenPack:Generic.Mulinex.2930E871 virus can do?

Behavioural detection: Executable code extraction – unpacking
Sample contains Overlay data
Yara rule detections observed from a process memory dump/dropped files/CAPE
Unconventionial language used in binary resources: Chinese (Simplified)
The binary contains an unknown PE section name indicative of packing
Executable file is packed/obfuscated with ASPack
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine GenPack:Generic.Mulinex.2930E871?


File Info:
name: E79B05C2A08A7A24A05B.mlwpath: /opt/CAPEv2/storage/binaries/b3cec3a010911c830ef963ca241b1937333fb9f0ea1c3d91f56bb7c0b54908cdcrc32: EE58F4FCmd5: e79b05c2a08a7a24a05bb1ef98233dfasha1: dde1fac61e6136130770d63650ffd6fc5cb3b85dsha256: b3cec3a010911c830ef963ca241b1937333fb9f0ea1c3d91f56bb7c0b54908cdsha512: 08b9e0a713adfae5806a97353c0f69f00324181750aec5af3dac544af2eb34065c1a6c394d0be4b74f208a84da3e2c3c0aa5c316650de421fe1a448d47c8ae41ssdeep: 6144:LjAAsf+wLxktcGleI7zAUsFdn60gFKjONFaVAk5Z7h8v:nogjX4leMl8vtype: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T16D544B32B5A0AB5FC467E33586DBDB6332BEB06073678363500C0C3A6E46BEA4D16755sha3_384: 6a91f1396499bbac36b60afaa5d98a3dc46925c57ee2b16667940ba206ceff9ae73a9263c92f464c8464d184bda48081ep_bytes: 60e803000000e9eb045d4555c3e80100timestamp: 2014-10-23 10:48:32
Version Info:
0: [No Data]

GenPack:Generic.Mulinex.2930E871 also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Farfli.m!c
MicroWorld-eScan	GenPack:Generic.Mulinex.2930E871
ClamAV	Win.Trojan.Generic-6305873-0
FireEye	Generic.mg.e79b05c2a08a7a24
CAT-QuickHeal	Backdoor.Zegost.17282
McAfee	GenericRXAA-FA!E79B05C2A08A
Cylance	Unsafe
VIPRE	GenPack:Generic.Mulinex.2930E871
Sangfor	Backdoor.Win32.Farfli.8
K7AntiVirus	Trojan ( 0055e3e41 )
Alibaba	Backdoor:Win32/Farfli.89a1c5da
K7GW	Trojan ( 0055e3e41 )
Cybereason	malicious.2a08a7
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Farfli.BBB
APEX	Malicious
Paloalto	generic.ml
Cynet	Malicious (score: 100)
Kaspersky	Backdoor.Win32.Farfli.hpj
BitDefender	GenPack:Generic.Mulinex.2930E871
NANO-Antivirus	Trojan.Win32.Crypted.dilemh
Avast	Win32:BackdoorX-gen [Trj]
Tencent	Malware.Win32.Gencirc.10b81cd9
Ad-Aware	GenPack:Generic.Mulinex.2930E871
Emsisoft	GenPack:Generic.Mulinex.2930E871 (B)
Comodo	Malware@#sax69mpqf1di
Zillya	Backdoor.Farfli.Win32.1044
TrendMicro	BKDR_ZEGOST.SM40
McAfee-GW-Edition	GenericRXGB-NK!CA6125FA937B
Trapmine	malicious.high.ml.score
Sophos	Mal/Behav-294
SentinelOne	Static AI – Suspicious PE
GData	GenPack:Generic.Mulinex.2930E871
Jiangmin	Backdoor/Hupigon.ayjb
Avira	TR/Crypt.XPACK.Gen
Antiy-AVL	Trojan/Generic.ASMalwS.26E9
Arcabit	GenPack:Generic.Mulinex.2930E871
Microsoft	Trojan:Win32/Skeeyah.A!rfn
Google	Detected
BitDefenderTheta	Gen:NN.ZexaF.34754.rGZba0Taesgb
ALYac	GenPack:Generic.Mulinex.2930E871
MAX	malware (ai score=89)
VBA32	Backdoor.Farfli
Malwarebytes	Malware.Heuristic.1003
TrendMicro-HouseCall	BKDR_ZEGOST.SM40
Rising	Malware.Undefined!8.C (TFE:5:OxPo2RhSGE)
Yandex	Backdoor.Farfli!2zOhGxX27Qg
Ikarus	Trojan.Win32.Farfli
MaxSecure	Trojan.Malware.7175197.susgen
Fortinet	W32/Farfli.AJY!tr
AVG	Win32:BackdoorX-gen [Trj]
Panda	Trj/Genetic.gen