Malware

About “Jacard.201629” infection

Malware Removal

The Jacard.201629 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jacard.201629 virus can do?

  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid

How to determine Jacard.201629?



File Info:

name: 8D669E15EE1A70C94ABC.mlw
path: /opt/CAPEv2/storage/binaries/81dd76650d5801c78c7a6fdeed974783f1fe8a3445caf0c3360dfb9c09247c2d
crc32: DB8B3B60
md5: 8d669e15ee1a70c94abc141c97432eb7
sha1: e46e93c0799b1539e6eaccd894d7b57c73e6c860
sha256: 81dd76650d5801c78c7a6fdeed974783f1fe8a3445caf0c3360dfb9c09247c2d
sha512: 7cab8eb13d8f1624c528207d5d349e778915176643c0fd52d774d9a380bf028efd1260e548298ac16f12292624f2cffcc3a158ba54e735a28ffffe56ed84d63b
ssdeep: 6144:U/pmfmagdC3jioykuR+arZHd+j0GrnwaTVHhic:UMmBINykuRvCfDZpHAc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10C4413A4BF518EC2D47C40B3ABC7752C9E4E5920808AD2D7B69FF43A7FBD362485111A
sha3_384: c48546c929adc2f8da0b67e929d62917ad284698db1caaeaae1c4794780ef5631a0c3d82c86a3f5fba513ef3b65cabe5
ep_bytes: 60be006047008dbe00b0f8ffc787a4e0
timestamp: 1992-06-19 22:22:17


Version Info:

FileVersion: 1.0.0.0
ProductVersion: 1.0.0.0
Translation: 0x0409 0x04e4

Jacard.201629 also known as:

MicroWorld-eScanGen:Variant.Jacard.201629
FireEyeGen:Variant.Jacard.201629
MalwarebytesMalware.Heuristic.1003
Cybereasonmalicious.5ee1a7
BitDefenderThetaGen:NN.ZelphiF.34606.qmKfaaI7Jgck
tehtrisGeneric.Malware
APEXMalicious
BitDefenderGen:Variant.Jacard.201629
Ad-AwareGen:Variant.Jacard.201629
EmsisoftGen:Variant.Jacard.201629 (B)
VIPREGen:Variant.Jacard.201629
Trapminesuspicious.low.ml.score
IkarusTrojan.Inject
GDataGen:Variant.Jacard.201629
JiangminWorm.Generic.anym
GoogleDetected
MAXmalware (ai score=89)
ArcabitTrojan.Jacard.D3139D
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.Generic.C4221853
ALYacGen:Variant.Jacard.201629
CylanceUnsafe
SentinelOneStatic AI – Suspicious PE

How to remove Jacard.201629?

Jacard.201629 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment