Should I remove “GenPack:Trojan.Ransom.BHE (B)”?

Malware Removal

The GenPack:Trojan.Ransom.BHE (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What GenPack:Trojan.Ransom.BHE (B) virus can do?

  • The binary likely contains encrypted or compressed data.
  • Network activity detected but not expressed in API logs

How to determine GenPack:Trojan.Ransom.BHE (B)?


File Info:

crc32: E432C6F2
md5: 0e3744d4c104cc1069d353fd7752fd1f
name: 0E3744D4C104CC1069D353FD7752FD1F.mlw
sha1: 53f381a95400bf437421e9cd467efabc2cd4da8e
sha256: 132e1f47a114361921d6fe08c7db47e33a8806138f8dbbeb07f518e444002d93
sha512: 35701172ce78c5c672e1385b90212c474fb65a01de92638c31a86d1a23beea7aa9e54667de344972158f440e53547b2af5986e8d875b06d03bfd24b193c9101c
ssdeep: 3072:YqrbwA3MZslUmPgBzczGUPWXZa6cGRi1A:1kdseHUP/ki1
type: MS-DOS executable, MZ for MS-DOS

Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: mrinfo.exe
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 6.1.7600.16385
FileDescription: Multicast Information
OriginalFilename: mrinfo.exe
Translation: 0x0409 0x04b0

GenPack:Trojan.Ransom.BHE (B) also known as:

BkavW32.AIDetect.malware1
K7AntiVirusTrojan ( 005376ae1 )
LionicTrojan.Win32.Generic.4!c
DrWebTrojan.MBRlock.265
CynetMalicious (score: 100)
ALYacGenPack:Trojan.Ransom.BHE
CylanceUnsafe
ZillyaTrojan.Generic.Win32.299696
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (D)
K7GWTrojan ( 005376ae1 )
Cybereasonmalicious.4c104c
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastFileRepMalware
ClamAVWin.Ransomware.Genpack-9868709-0
KasperskyUDS:Trojan.Win32.Generic
BitDefenderGenPack:Trojan.Ransom.BHE
NANO-AntivirusTrojan.Win32.MBRlock.eyfofm
MicroWorld-eScanGenPack:Trojan.Ransom.BHE
TencentWin32.Trojan.Crypt.Glr
Ad-AwareGenPack:Trojan.Ransom.BHE
SophosMal/Generic-S
ComodoTrojWare.Win32.Petya.E@6yquji
BitDefenderThetaGen:NN.ZexaF.34058.hmuaayDNmabi
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Generic.cc
FireEyeGeneric.mg.0e3744d4c104cc10
EmsisoftGenPack:Trojan.Ransom.BHE (B)
SentinelOneStatic AI – Suspicious PE
AviraTR/Patched.Gen
eGambitUnsafe.AI_Score_99%
MicrosoftTrojan:Win32/Occamy.B
GDataGenPack:Trojan.Ransom.BHE
AhnLab-V3Malware/Win32.Generic.C1815245
VBA32Trojan.MBRlock
MAXmalware (ai score=97)
MalwarebytesRansom.Petya.Generic
TrendMicro-HouseCallRansom_PETYA.SM1
RisingTrojan.Kryptik!1.BB62 (CLASSIC)
IkarusTrojan-Ransom.PetYa
FortinetW32/Generic!tr
AVGFileRepMalware
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.Generic.HxIBM8IA

How to remove GenPack:Trojan.Ransom.BHE (B)?

GenPack:Trojan.Ransom.BHE (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment