Malware

Johnnie.162024 removal instruction

Malware Removal

The Johnnie.162024 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Johnnie.162024 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs
  • Binary compilation timestomping detected

How to determine Johnnie.162024?



File Info:

name: 87AD1ABE6145FF9C3D64.mlw
path: /opt/CAPEv2/storage/binaries/38e7cbdf2cb64586343a1ba540acb385bb874eac71fdd96da7a5b5064c6ce112
crc32: 462B4BA7
md5: 87ad1abe6145ff9c3d64b52e761e68e6
sha1: 7b9edef04cd5264a39791e09d2401ab1fe7266a5
sha256: 38e7cbdf2cb64586343a1ba540acb385bb874eac71fdd96da7a5b5064c6ce112
sha512: 955a7c5048763e9145a15b817904a413891c6fa780d6f855a3d5775be9adeaf77790fed13dda20392d3d28abadafdea991741330a26ff6e78fe58053a03dd74e
ssdeep: 6144:JXXXXXXXXXXXXXXXXXXXeS4KAi4y+z26EA6gqv3QV6GIBNeN8bkCJTGG9ujsrD4B:VrOroQr
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T168B47F3E28442FF3AE71AD37E09A1046B6E0748127E31A4A369F561D757B643BC4B39C
sha3_384: 0d708b8b388e17b9163b27a0de78f82bebf9d28eede2afcaf06f640b9aadbcffdb35a942ab03f3f6ce57575ed93b6824
ep_bytes: ff250020400000000000000000000000
timestamp: 2077-01-18 01:47:50


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: WindowsFormsApp9
FileVersion: 1.0.0.0
InternalName: WindowsFormsApp9.exe
LegalCopyright: Copyright ©  2019
LegalTrademarks: 
OriginalFilename: WindowsFormsApp9.exe
ProductName: WindowsFormsApp9
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Johnnie.162024 also known as:

LionicTrojan.MSIL.Agent.4!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Johnnie.162024
FireEyeGeneric.mg.87ad1abe6145ff9c
McAfeeGenericRXGN-MW!87AD1ABE6145
CylanceUnsafe
ZillyaTrojan.Kryptik.Win32.3442104
SangforTrojan.MSIL.Agent.gen
K7AntiVirusTrojan ( 700000121 )
AlibabaTrojan:Win32/Starter.ali2000005
K7GWTrojan ( 700000121 )
Cybereasonmalicious.e6145f
CyrenW32/MSIL_Kryptik.AEX.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/Kryptik.PHS
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan.MSIL.Agent.gen
BitDefenderGen:Variant.Johnnie.162024
NANO-AntivirusTrojan.Win32.Kryptik.fsxiqd
AvastWin32:RATX-gen [Trj]
TencentMsil.Trojan.Agent.Ecav
Ad-AwareGen:Variant.Johnnie.162024
SophosMal/Generic-S
ComodoBackdoor.MSIL.Bladabindi.PH@88f738
DrWebTrojan.DownLoader29.26852
TrendMicroTROJ_GEN.R002C0PIG21
McAfee-GW-EditionGenericRXGN-MW!87AD1ABE6145
EmsisoftGen:Variant.Johnnie.162024 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Johnnie.162024
AviraTR/Dropper.Gen
MAXmalware (ai score=100)
Antiy-AVLTrojan/Generic.ASMalwS.2BFF521
MicrosoftBackdoor:MSIL/Bladabindi
CynetMalicious (score: 100)
AhnLab-V3Win-Trojan/MSILKrypt15.Exp
VBA32TScope.Trojan.MSIL
ALYacGen:Variant.Johnnie.162024
MalwarebytesMalware.AI.2520271672
TrendMicro-HouseCallTROJ_GEN.R002C0PIG21
YandexTrojan.Agent!Dg5BclP9l4Q
IkarusTrojan.MSIL.Krypt
MaxSecureTrojan.Malware.300983.susgen
FortinetMSIL/GenKryptik.CHLW!tr
AVGWin32:RATX-gen [Trj]
PandaTrj/GdSda.A
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Johnnie.162024?

Johnnie.162024 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment