Malware

Mal/Generic-S + Troj/Azov-B malicious file

Malware Removal

The Mal/Generic-S + Troj/Azov-B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-S + Troj/Azov-B virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Mal/Generic-S + Troj/Azov-B?



File Info:

name: 5C37A887580F39DBC11E.mlw
path: /opt/CAPEv2/storage/binaries/4a0bf8ad66d39083f23c88e36c8372a8ca9d859cf9fd0ef796c0dc9f4b7a96f1
crc32: 0CDCB05C
md5: 5c37a887580f39dbc11eb9ad3dbdd4e8
sha1: 4fbdb4a8ef29b71f65e3bc93708f2919db4aec84
sha256: 4a0bf8ad66d39083f23c88e36c8372a8ca9d859cf9fd0ef796c0dc9f4b7a96f1
sha512: 37aa3ea6f4dd7905da6c8216bb63df58b26a25278c60b7be6ab78b48f94dc1cca99f5f6d380f3bf8cee04679dd4a47ae57e220c19c36e3e3ba7c381548180591
ssdeep: 24576:VME+gtB/jwUSPXKAZM49zlqGA8N/JYiToIlO70odAZ3cPf42ma:VMM/jwUmdZM4Sjw/tTMnANc/
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T10C959D07F26940E9C05EC178CB46D631AA71BC894B65A9EF22907F163E76BD01F3E721
sha3_384: 1a52bfd844ed48d4edcdf7803521abc2dd2e8d29cf1d09e16559cea53b0eb60477b80d591b82238e9f6e1878b53eae1f
ep_bytes: 488d05c6fbffff4805c5020000ffd0c8
timestamp: 2020-02-29 02:15:54


Version Info:

CompanyName: Google LLC
FileDescription: Google Chrome
FileVersion: 80.0.3987.132
InternalName: chrome_exe
LegalCopyright: Copyright 2019 Google LLC. All rights reserved.
OriginalFilename: chrome.exe
ProductName: Google Chrome
ProductVersion: 80.0.3987.132
CompanyShortName: Google
ProductShortName: Chrome
LastChange: fcea73228632975e052eb90fcf6cd1752d3b42b4-refs/branch-heads/3987@#974
Official Build: 1
Translation: 0x0409 0x04b0

Mal/Generic-S + Troj/Azov-B also known as:

LionicTrojan.Win32.Crypmod.tsb7
DrWebWin32.HLLP.Azov.3
MicroWorld-eScanWin64.Ransom.A
ALYacWin64.Ransom.A
CylanceUnsafe
VIPREWin64.Ransom.A
K7AntiVirusVirus ( 0059ab071 )
AlibabaVirus:Win64/Expiro.8f15d835
K7GWVirus ( 0059ab071 )
CyrenW64/Expiro.BM.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win64/Expiro.DR
TrendMicro-HouseCallTROJ_GEN.R011H09JL22
ClamAVWin.Ransomware.Expiro-9975896-0
KasperskyVHO:Trojan.Win64.Convagent.gen
BitDefenderWin64.Ransom.A
AvastFileRepMalware [Misc]
TencentWin64.Virus.Expiro.Jqil
Ad-AwareWin64.Ransom.A
EmsisoftWin64.Ransom.A (B)
McAfee-GW-EditionBehavesLike.Win64.Virus.th
FireEyeWin64.Ransom.A
SophosMal/Generic-S + Troj/Azov-B
GDataWin64.Ransom.A
JiangminTrojan.Blocker.utc
GoogleDetected
MAXmalware (ai score=84)
Antiy-AVLVirus/Win64.Expiro.dr
ArcabitWin64.Ransom.A
MicrosoftTrojan:Win32/Wacatac.B!ml
AhnLab-V3Trojan/Win.Generic.R534205
McAfeeArtemis!5C37A887580F
RisingVirus.Expiro!8.375 (CLOUD)
IkarusVirus.Win64.Expiro
FortinetW64/Expiro.DR!tr
AVGFileRepMalware [Misc]

How to remove Mal/Generic-S + Troj/Azov-B?

Mal/Generic-S + Troj/Azov-B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment