Kraddare.Adware.Advertising.DDS malicious file

The Kraddare.Adware.Advertising.DDS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Kraddare.Adware.Advertising.DDS virus can do?

Sample contains Overlay data
Reads data out of its own binary image
Attempts to modify Internet Explorer’s start page
Authenticode signature is invalid
Accessed credential storage registry keys

How to determine Kraddare.Adware.Advertising.DDS?


File Info:
name: 5920A846F1D66D1BE60B.mlw
path: /opt/CAPEv2/storage/binaries/aa2c1bce56dc66323d6e223b9e3fbcbf9189b59632013b8a0113d20cebff20e4
crc32: 5C71DF8F
md5: 5920a846f1d66d1be60b998302e4511a
sha1: 91a3e50d6e9ec54ac16a71ee35ef119e57c136d6
sha256: aa2c1bce56dc66323d6e223b9e3fbcbf9189b59632013b8a0113d20cebff20e4
sha512: 78ab0eeba5f655c8d51bf00aaf02562f76339010dbb8096f8090eb2e113afc07de7d2c130c2a340be515d4111f197411e7281498d02c6613a7e00e2cb4dd32b7
ssdeep: 3072:6gXdZt9P6D3XJO9Vs76SB+ZP55fnPcHI1QHSnja05KR:6e340Y75+ZPPfnE2Qyn20UR
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T142B3F116A2C005B7E9A219320673D77AE3FBC5D603853A23C7947F6D6E239C3D815782
sha3_384: 4e78e0fcaca79b2c5aac2d0623113c9aad8f5ff1ae6d8643b24b7257f9c41643ed311be5ad4d24fb6885c84ba9903e40
ep_bytes: 81ec8001000053555633db57895c2418
timestamp: 2009-06-06 21:41:59

Version Info:
0: [No Data]

Kraddare.Adware.Advertising.DDS also known as:

Bkav	W32.AIDetectMalware
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (moderate confidence)
MicroWorld-eScan	Gen:Trojan.StartPage.guZ@aONmPgji
FireEye	Gen:Trojan.StartPage.guZ@aONmPgji
McAfee	Artemis!5920A846F1D6
Malwarebytes	Kraddare.Adware.Advertising.DDS
Sangfor	PUP.Win32.StartPage.Vzlx
CrowdStrike	win/grayware_confidence_60% (W)
APEX	Malicious
BitDefender	Gen:Trojan.StartPage.guZ@aONmPgji
SUPERAntiSpyware	Trojan.Agent/Gen-Startpage
Avast	Win32:Malware-gen
Emsisoft	Gen:Trojan.StartPage.guZ@aONmPgji (B)
VIPRE	Gen:Trojan.StartPage.guZ@aONmPgji
McAfee-GW-Edition	BehavesLike.Win32.BadFile.cc
GData	Gen:Trojan.StartPage.guZ@aONmPgji
Arcabit	Trojan.StartPage.E60DB5
Microsoft	Program:Win32/Ymacco.AA96
AhnLab-V3	Adware/Win32.StartPage.C164709
ALYac	Gen:Trojan.StartPage.guZ@aONmPgji
MAX	malware (ai score=100)
VBA32	suspected of Trojan.Downloader.gen
Cylance	unsafe
TrendMicro-HouseCall	TROJ_GEN.R002H09EC23
AVG	Win32:Malware-gen
Cybereason	malicious.6f1d66
DeepInstinct	MALICIOUS

How to remove Kraddare.Adware.Advertising.DDS?

Kraddare.Adware.Advertising.DDS removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X