Malware

Mal/Behav-370 (file analysis)

Malware Removal

The Mal/Behav-370 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Behav-370 virus can do?

  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Mal/Behav-370?



File Info:

crc32: 2D68D009
md5: e8a94db7b239462d9f5f8c0b369251ca
name: bdesetup.exe
sha1: 84af1e418aeeac486e91b515859d3aa6d067bd62
sha256: b97b85a845c58ca30ead6c144cdbef11d6bff0652af00603f8ef7f3422157043
sha512: a109ecb297107e5346dd177ecddd334fd0a6d108e09b1667ff865dcc11987b6c11031b78f1bcbb3a09d3f804a1b3e7fdf56ece1689a091b33a4b4806ac277ff4
ssdeep: 24576:co0QamPwfyWLoeBJzLQLBE1me63GsUe6mdUsR9ec2:eQaCioIJzUFkh63Gskmd1ve
type: PE32 executable (GUI) Intel 80386, for MS Windows, UPX compressed, RAR self-extracting archive


Version Info:

0: [No Data]

Mal/Behav-370 also known as:

MicroWorld-eScanTrojan.GenericKD.33344965
FireEyeGeneric.mg.e8a94db7b239462d
McAfeeArtemis!E8A94DB7B239
BitDefenderTrojan.GenericKD.33344965
Invinceaheuristic
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Evo-gen [Susp]
GDataTrojan.GenericKD.33344965
AegisLabTrojan.Win32.Generic.4!c
Endgamemalicious (moderate confidence)
SophosMal/Behav-370
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.BadFile.tc
Trapminemalicious.high.ml.score
EmsisoftTrojan.GenericKD.33344965 (B)
IkarusTrojan-GameThief.Win32.Lmir
MAXmalware (ai score=82)
MicrosoftTrojan:Win32/Occamy.C
ArcabitTrojan.Generic.D1FCCDC5
ALYacTrojan.GenericKD.33344965
TACHYONTrojan/W32.Starter.107008
Ad-AwareTrojan.GenericKD.33344965
TrendMicro-HouseCallTROJ_GEN.R002H09BM20
AVGWin32:Evo-gen [Susp]
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_60% (W)
MaxSecureTrojan.Malware.9381496.susgen

How to remove Mal/Behav-370?

Mal/Behav-370 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment