Malware

Johnnie.115683 removal tips

Malware Removal

The Johnnie.115683 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Johnnie.115683 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Sample contains Overlay data
  • Guard pages use detected – possible anti-debugging.
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Checks the version of Bios, possibly for anti-virtualization
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

How to determine Johnnie.115683?



File Info:

name: 5E48F4BDA5AEF3B446A4.mlw
path: /opt/CAPEv2/storage/binaries/7d414d7b6360c7d4d1efe831242b1a6d7f962a4e36dbf6a4952390f50ac86e09
crc32: 71E45B69
md5: 5e48f4bda5aef3b446a45ca85ac9f4bd
sha1: 09eea00ee45eb2dee7f9a8fac5fae8c6551e994b
sha256: 7d414d7b6360c7d4d1efe831242b1a6d7f962a4e36dbf6a4952390f50ac86e09
sha512: c04ce3d52558c4124f86030d4e264c71acc504b36782fb17ce94749f77339b2b37db114832e9a7761f24843f64815adaf8936896f4bbccf2e7c4f0e7bd45d460
ssdeep: 1536:/CX5HBUD51Grvq1uDoMWDio+Fq7YZBWZre3c73:aRqN1oq1uHWIFKSBwre3cT
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12AA35D23B4295067C0A885BF176CB758BCDE7C7046A4981BB715B6DC0D326EE98E870F
sha3_384: 86be5d9ab07d8751fb6157242d112e01525dd1e313b06809990ab88ae2d57227c9ac660247c1b3f1c98c3b95c0d290b4
ep_bytes: 68b0144000e8f0ffffff000000000000
timestamp: 2013-03-29 01:14:00


Version Info:

Translation: 0x0409 0x04b0
CompanyName: IES
ProductName: Project1
FileVersion: 1.00
ProductVersion: 1.00
InternalName: 2
OriginalFilename: 2.exe

Johnnie.115683 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Generic.4!c
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Johnnie.115683
ALYacGen:Variant.Johnnie.115683
CylanceUnsafe
VIPREGen:Variant.Johnnie.115683
AlibabaTrojan:Application/Generic.ca32548e
CrowdStrikewin/malicious_confidence_100% (D)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Generik.KODBDPD
APEXMalicious
Paloaltogeneric.ml
CynetMalicious (score: 100)
BitDefenderGen:Variant.Johnnie.115683
NANO-AntivirusTrojan.Win32.Mlw.fgmlio
AvastWin32:Malware-gen
TencentWin32.Trojan.Dropper.Sxoq
Ad-AwareGen:Variant.Johnnie.115683
EmsisoftGen:Variant.Johnnie.115683 (B)
ComodoMalware@#3mk77k0yvecii
F-SecureTrojan.TR/Dropper.Gen
McAfee-GW-EditionBehavesLike.Win32.Trojan.cm
Trapminesuspicious.low.ml.score
FireEyeGeneric.mg.5e48f4bda5aef3b4
SophosMal/Generic-S
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Johnnie.115683
AviraTR/Dropper.Gen
MAXmalware (ai score=99)
ArcabitTrojan.Johnnie.D1C3E3
MicrosoftTrojan:Win32/Occamy.C7D
GoogleDetected
Acronissuspicious
McAfeeArtemis!5E48F4BDA5AE
RisingDropper.Generic!8.35E (CLOUD)
IkarusTrojan.SuspectCRC
FortinetW32/Generik.KODBDPD!tr
AVGWin32:Malware-gen
Cybereasonmalicious.da5aef

How to remove Johnnie.115683?

Johnnie.115683 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment