Malware

Mal/Generic-S + Troj/Steal-AYS removal guide

Malware Removal

The Mal/Generic-S + Troj/Steal-AYS is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Mal/Generic-S + Troj/Steal-AYS virus can do?

  • Creates RWX memory
  • Reads data out of its own binary image
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Mal/Generic-S + Troj/Steal-AYS?



File Info:

crc32: 236A5589
md5: b5c8bf0924ecc52d9a6e71b5484150ea
name: B5C8BF0924ECC52D9A6E71B5484150EA.mlw
sha1: 16315b51559317ad21d3f476da0b31c21fd6609a
sha256: c0466076d8ec433ba9e1d90dacd8bc00092bd67ae59a12dd1b7da5e759f6bab5
sha512: bda49269f101076840726ae4b1eeedc320713025d719e5be7572f141aa45e319a07ec47292df524733a5a81535e2c689733070f8507405ddf49669209d7962e6
ssdeep: 192:qSTyXM/KWiPxC/ChPKkdKKuIW1YPZzVHD+TiFgLhW:vyXM/KWiXhfKKHZzVHyTiFgN
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2020
Assembly Version: 1.0.0.0
InternalName: Indexeur Microsoft Windows Search.exe
FileVersion: 1.0.0.0
CompanyName: 
LegalTrademarks: 
Comments: 
ProductName: 
ProductVersion: 1.0.0.0
FileDescription: 
OriginalFilename: Indexeur Microsoft Windows Search.exe

Mal/Generic-S + Troj/Steal-AYS also known as:

FireEyeGeneric.mg.b5c8bf0924ecc52d
CAT-QuickHealTrojan.Agent
McAfeeRDN/Generic.dx
CylanceUnsafe
AegisLabTrojan.Win32.Generic.4!c
SangforMalware
K7AntiVirusRiskware ( 0040eff71 )
BitDefenderTrojan.GenericKD.45374620
K7GWRiskware ( 0040eff71 )
CyrenW32/Trojan.JPNW-6489
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallBackdoor.MSIL.LIMERAT.AD
AlibabaTrojanDownloader:MSIL/LIMERAT.2bb57c8b
ViRobotTrojan.Win32.Z.Agent.10752.FKY
MicroWorld-eScanTrojan.GenericKD.45374620
Ad-AwareTrojan.GenericKD.45374620
SophosMal/Generic-S + Troj/Steal-AYS
TrendMicroBackdoor.MSIL.LIMERAT.AD
McAfee-GW-EditionRDN/Generic.dx
EmsisoftTrojan.GenericKD.45374620 (B)
IkarusTrojan-Downloader.MSIL.Small
MicrosoftBackdoor:Win32/Bladabindi!ml
ArcabitTrojan.Generic.D2B45C9C
GDataTrojan.GenericKD.45374620
AhnLab-V3Malware/Win32.RL_Backdoor.C4310479
BitDefenderThetaGen:NN.ZemsilF.34804.am0@aKFp2Gh
ALYacTrojan.GenericKD.45374620
MAXmalware (ai score=83)
MalwarebytesGeneric.Malware/Suspicious
APEXMalicious
eGambitUnsafe.AI_Score_99%
FortinetW32/Steal.AYS!tr

How to remove Mal/Generic-S + Troj/Steal-AYS?

Mal/Generic-S + Troj/Steal-AYS removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment