Malware

Should I remove “Mal/Generic-S + Mal/EncPk-ADN”?

Malware Removal

The Mal/Generic-S + Mal/EncPk-ADN is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-S + Mal/EncPk-ADN virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Deletes its original binary from disk
  • Created a process from a suspicious location
  • Creates a copy of itself

How to determine Mal/Generic-S + Mal/EncPk-ADN?



File Info:

name: 1F06209E11047FC92B99.mlw
path: /opt/CAPEv2/storage/binaries/f4b4c13b9a166d17910573d5ed31af10c93b0bbc59b8379e2680f54af05b434d
crc32: E56428AF
md5: 1f06209e11047fc92b999b30729d730a
sha1: 6e499dc746f900b9fc77f4fc029f3104189302fc
sha256: f4b4c13b9a166d17910573d5ed31af10c93b0bbc59b8379e2680f54af05b434d
sha512: 7eb2a11e9151b45d2ab6d109309f506ecc64bacf967e33f7ef3052740f11bca7120ece094e79c5ec83c116c8ecbcb0c729f8775d8278a642acbd8ab8faa2cbb9
ssdeep: 1536:V0B7WsWW6mIZPwzO1fGc6sRJKMT0rKfyclyRIT3TnxdcacKLvbu67sND0T:V0BHfCooGcbhT3yn0Djc/KLR7sND0T
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T15583E0E76EC1B43AF3811EFA89800F5F4AEE098B1AF35D9AD5665563C09D300066F4F1
sha3_384: 25cb225186a61ea1fc8539ddf56bd925268b6a591065ad3c5a140be5d8885fe54dc4bb0b64d37a675accdd552be069c1
ep_bytes: b83989d9ba81e99fda352809ff681886
timestamp: 1970-01-01 00:00:00


Version Info:

0: [No Data]

Mal/Generic-S + Mal/EncPk-ADN also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Razy.373481
FireEyeGeneric.mg.1f06209e11047fc9
ALYacGen:Variant.Razy.373481
CylanceUnsafe
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0058e60a1 )
K7GWTrojan ( 0058e60a1 )
CrowdStrikewin/malicious_confidence_100% (W)
CyrenW32/Zbot.W.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.DZQA
APEXMalicious
KasperskyHEUR:Trojan.Win32.Copak.pef
BitDefenderGen:Variant.Razy.373481
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
AvastWin32:Trojan-gen
TencentTrojan.Win32.Copak.zd
Ad-AwareGen:Variant.Razy.373481
EmsisoftGen:Variant.Razy.373481 (B)
F-SecureTrojan.TR/Crypt.XPACK.Gen
DrWebTrojan.Siggen18.15727
VIPREGen:Variant.Razy.373481
McAfee-GW-EditionBehavesLike.Win32.RAHack.mc
Trapminemalicious.moderate.ml.score
SophosMal/Generic-S + Mal/EncPk-ADN
IkarusTrojan.Win32.Injector
GDataGen:Variant.Razy.373481
AviraTR/Crypt.XPACK.Gen
MAXmalware (ai score=85)
ArcabitTrojan.Razy.D5B2E9
ZoneAlarmHEUR:Trojan.Win32.Copak.pef
MicrosoftTrojan:Win32/Zusy.DKL!MTB
CynetMalicious (score: 100)
AhnLab-V3Malware/Win.Generic.R419438
Acronissuspicious
McAfeeArtemis!1F06209E1104
VBA32BScope.Trojan.Wacatac
MalwarebytesTrojan.Injector.Generic
RisingTrojan.Generic@AI.100 (RDML:JMkyt1o5fN26E6yb07/wBw)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.T!tr
BitDefenderThetaGen:NN.ZexaF.34742.fuW@aiaVaNg
AVGWin32:Trojan-gen
Cybereasonmalicious.e11047

How to remove Mal/Generic-S + Mal/EncPk-ADN?

Mal/Generic-S + Mal/EncPk-ADN removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment