Malware

Mal/Generic-R + ATK/Deimos-A removal guide

Malware Removal

The Mal/Generic-R + ATK/Deimos-A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-R + ATK/Deimos-A virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Dynamic (imported) function loading detected
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Mal/Generic-R + ATK/Deimos-A?



File Info:

name: 104904AC5FE0A7F28BB8.mlw
path: /opt/CAPEv2/storage/binaries/92fadb9e7103b99be7b987577624d00233f7cfddc334d79009760d2e3fa8e3f6
crc32: FAC9C63C
md5: 104904ac5fe0a7f28bb86f4fb34ca633
sha1: fccd51cea2ab854a83e5940dab887c082e9b7882
sha256: 92fadb9e7103b99be7b987577624d00233f7cfddc334d79009760d2e3fa8e3f6
sha512: c4dd9cf10e10ee272cc726927587aaaa2827a174e70bdf83226675fbb5b7fe40547a7823049b4911bde8b5f97e8449271d2fd88a8b51e3b8d2ed3eca4861f638
ssdeep: 49152:BYqUV9llfYskHZ+wxqPsvORZFVVrFzF7MM0SAi3rig8ain/v531NDD4lEwwr2a/L:mqy3mAwxva75zFr0Lki/K
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D2264A50F9EB44F5EA03153104A7E2BF23307629E725CBC7DA606F67E8276E20D36256
sha3_384: ad6eb5b2e880301f8acda43ad9fdf4abaff62dbfa471dd8f530f390d6c27d4808a4020cce2920344fcc7f96396fd0d42
ep_bytes: e99bdcffffcccccccccccccccccccccc
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Mal/Generic-R + ATK/Deimos-A also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Generic.4!c
McAfeeArtemis!104904AC5FE0
CylanceUnsafe
K7AntiVirusRiskware ( 0040eff71 )
K7GWRiskware ( 0040eff71 )
BitDefenderThetaAI:Packer.009700AB21
SymantecML.Attribute.HighConfidence
Paloaltogeneric.ml
CynetMalicious (score: 100)
McAfee-GW-EditionBehavesLike.Win32.Generic.rh
SophosMal/Generic-R + ATK/Deimos-A
IkarusTrojan.Crypt
AviraTR/Crypt.XPACK.Gen
GridinsoftRansom.Win32.Sabsik.sa
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ViRobotTrojan.Win32.Z.Crypt.4822528
SentinelOneStatic AI – Malicious PE
AhnLab-V3Trojan/Win.Generic.C4807401
APEXMalicious
RisingMalware.Heuristic!ET#85% (RDMK:cmRtazqLTtkUPM1EUa9KIqh3rJSW)
FortinetMalicious_Behavior.SB

How to remove Mal/Generic-R + ATK/Deimos-A?

Mal/Generic-R + ATK/Deimos-A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment