Malware

Jacard.211968 removal guide

Malware Removal

The Jacard.211968 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Jacard.211968 virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Jacard.211968?



File Info:

name: 9ED7E2447FF45BD4825C.mlw
path: /opt/CAPEv2/storage/binaries/d177963bbe57f156ee735fd3caf8380c1f405a07ebce405402e3e0c9ceea7f9b
crc32: 531A27E4
md5: 9ed7e2447ff45bd4825c8adb080ef7b6
sha1: c4da3ca9c6ccf3706909331808b4a8764373636a
sha256: d177963bbe57f156ee735fd3caf8380c1f405a07ebce405402e3e0c9ceea7f9b
sha512: 926809a4a9127502d2e608e7f432176f7e34f26f0d90f800ebc86e087ec06693946442249259f1bfb71293c29a185647c37a58bd24af184effe9a3443d83cd32
ssdeep: 12288:big08z8pZGlIE1LwozQEcO00fRTkgMjYzeqN1wxHyqbG0LziM1yD:bigt8pSI4wyXcOdRIgW2NC91uM1
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T164E4235EB25B082BC87227325F43CE574747AD377AA42FAB1686BE0D0B3C4155163B1B
sha3_384: 11530a03ff4373d5788e21c59075d78564632ac92d032f26d2cc8b686e73b7e3eccaf6d99e75574697d4d9b8f6098eac
ep_bytes: 60be00105b008dbe0000e5ff5783cdff
timestamp: 2014-10-08 20:39:02


Version Info:

CompanyName: BahraniApps
FileDescription: GifCam
FileVersion: 4.5.0.0
InternalName: GifCam
LegalCopyright: © 2013-2014 BahraniApps
LegalTrademarks: GifCam
OriginalFilename: GifCam
ProductName: GifCam
ProductVersion: 4.5.0.0
Translation: 0x0409 0x04e4

Jacard.211968 also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Badur.m8MH
MicroWorld-eScanGen:Variant.Jacard.211968
FireEyeGeneric.mg.9ed7e2447ff45bd4
ALYacGen:Variant.Jacard.211968
Cylanceunsafe
CrowdStrikewin/malicious_confidence_70% (W)
Elasticmalicious (moderate confidence)
APEXMalicious
BitDefenderGen:Variant.Jacard.211968
VIPREGen:Variant.Jacard.211968
McAfee-GW-EditionBehavesLike.Win32.BadFile.jc
Trapminesuspicious.low.ml.score
EmsisoftGen:Variant.Jacard.211968 (B)
Antiy-AVLGrayWare/Win32.Presenoker
ArcabitTrojan.Jacard.D33C00
GDataGen:Variant.Jacard.211968
McAfeeArtemis!9ED7E2447FF4
TrendMicro-HouseCallTROJ_GEN.R002H09H223
MaxSecureTrojan.Malware.300983.susgen
DeepInstinctMALICIOUS

How to remove Jacard.211968?

Jacard.211968 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment