Malware

Mal/Generic-S + Troj/Dridex-AHD information

Malware Removal

The Mal/Generic-S + Troj/Dridex-AHD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-S + Troj/Dridex-AHD virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Possible date expiration check, exits too soon after checking local time
  • A process created a hidden window
  • Uses Windows utilities for basic functionality
  • Executed a process and injected code into it, probably while unpacking
  • Installs itself for autorun at Windows startup
  • Anomalous binary characteristics

How to determine Mal/Generic-S + Troj/Dridex-AHD?



File Info:

crc32: 79E232C7
md5: 5a6e614b4c79041ede71dc56e9d4523a
name: 5A6E614B4C79041EDE71DC56E9D4523A.mlw
sha1: d30cd8392133d35d11704d2a1556a4572078fb0e
sha256: 338b41182264fbc390c82f349f934242f85f2adcd82e37cc064855793abc01e2
sha512: 7d55fa5f271690ceeb5062d6d94255a126cc863f0b1e9e4ca53ae70c6c53d32cfc0b5cdc5dd8ca057948ece318b27b2229aca72f015baaab608a16553a93a2fd
ssdeep: 24576:sBMet/DwbBYmn0d6HKJjoJuCY0YPLSz+nchhQRGjKNdZP+JKLj:sFt/DHc0kHWoJpILMrQRGjKNb+JKLj
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: xa9 Nine fun Corporation. All rights reserved
InternalName: Get instant
FileVersion: 3.4.5.631 Savepaint
CompanyName: Nine fun Corporation
ProductName: Nine funxae Seepeoplexae
ProductVersion: 3.4.5.631
FileDescription: Nine fun Seepeople
OriginalFilename: Locate.dll
Translation: 0x0409 0x04b0

Mal/Generic-S + Troj/Dridex-AHD also known as:

CynetMalicious (score: 100)
CylanceUnsafe
SangforRiskware.Win32.Wacapew.C
K7GWBackdoor ( 0057aad31 )
K7AntiVirusBackdoor ( 0057aad31 )
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/Qbot.CY
AvastWin32:MalwareX-gen [Trj]
BitDefenderTrojan.GenericKD.37080904
MicroWorld-eScanTrojan.GenericKD.37080904
Ad-AwareTrojan.GenericKD.37080904
SophosMal/Generic-S + Troj/Dridex-AHD
McAfee-GW-EditionArtemis!Trojan
FireEyeGeneric.mg.5a6e614b4c79041e
AviraTR/AD.Qbot.ssyog
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataTrojan.GenericKD.37080904
McAfeeGenericRXOV-TV!5A6E614B4C79
MAXmalware (ai score=80)
VBA32BScope.Trojan.Dridex
IkarusWin32.Outbreak
FortinetW32/Qbot.CY!tr
AVGWin32:MalwareX-gen [Trj]
Paloaltogeneric.ml

How to remove Mal/Generic-S + Troj/Dridex-AHD?

Mal/Generic-S + Troj/Dridex-AHD removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment