Malware

Johnnie.123881 removal guide

Malware Removal

The Johnnie.123881 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Johnnie.123881 virus can do?

  • Creates RWX memory
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

pastebin.com

How to determine Johnnie.123881?



File Info:

crc32: 6D03DE31
md5: 86386cca53aeb65996069bba2604da24
name: 86386CCA53AEB65996069BBA2604DA24.mlw
sha1: 1c792779921d52fea7c3a98c246557937b35472d
sha256: 1e49893b0dc2541e75ee6b53be15926249f1af0686e5cf968802d9ada635a5ee
sha512: 4e510fa3f6c02eb046826a53e55e2fc02be39f006e78aa2fea57fd208cd6bf3e116314f6ff14fd7fda1b230c999f2895c8639a8d59ebfc802f42b75f8c2eb224
ssdeep: 192:sa1b5jsbNb5OYb5z8nA1V0KI75C0L8LOLWWARzmYJajNLWl2CXPPlakhOB:sap5Wx5Oe5zgA1V0Ka5nL8LOLWWAhBJ
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2018
Assembly Version: 1.0.0.0
InternalName: WindowsFormsApplication1.exe
FileVersion: 1.0.0.0
ProductName: WindowsFormsApplication1
ProductVersion: 1.0.0.0
FileDescription: WindowsFormsApplication1
OriginalFilename: WindowsFormsApplication1.exe

Johnnie.123881 also known as:

K7AntiVirusTrojan-Downloader ( 005295091 )
LionicTrojan.MSIL.Generic.4!c
DrWebBackDoor.Comet.3422
CynetMalicious (score: 99)
ALYacGen:Variant.Johnnie.123881
CylanceUnsafe
SangforBackdoor.MSIL.Bladabindi.A!MTB
CrowdStrikewin/malicious_confidence_80% (D)
K7GWTrojan-Downloader ( 005295091 )
Cybereasonmalicious.a53aeb
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of MSIL/TrojanDownloader.Tiny.XM
APEXMalicious
AvastWin32:Malware-gen
KasperskyHEUR:Trojan.MSIL.Generic
BitDefenderGen:Variant.Johnnie.123881
NANO-AntivirusTrojan.Win32.Comet.ezjmvq
MicroWorld-eScanGen:Variant.Johnnie.123881
TencentMsil.Trojan.Generic.Dyzw
Ad-AwareGen:Variant.Johnnie.123881
SophosMal/Generic-S
ComodoMalware@#a0c0zn8npdzb
BitDefenderThetaGen:NN.ZemsilF.34266.am0@aq9k8Wl
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionGenericRXDM-OH!86386CCA53AE
FireEyeGeneric.mg.86386cca53aeb659
EmsisoftGen:Variant.Johnnie.123881 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.MSIL.iurd
AviraHEUR/AGEN.1104917
Antiy-AVLTrojan/Generic.ASMalwS.253207A
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataGen:Variant.Johnnie.123881
AhnLab-V3Trojan/Win32.Bladabindi.C2668910
McAfeeGenericRXDM-OH!86386CCA53AE
MAXmalware (ai score=94)
PandaTrj/GdSda.A
IkarusTrojan-Downloader.MSIL.Tiny
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.XM!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Johnnie.123881?

Johnnie.123881 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment