Malware

MSIL/UwS.Sw4uRCUp.A removal

Malware Removal

The MSIL/UwS.Sw4uRCUp.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What MSIL/UwS.Sw4uRCUp.A virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine MSIL/UwS.Sw4uRCUp.A?



File Info:

name: 86EBEFB76B9D8C8B6191.mlw
path: /opt/CAPEv2/storage/binaries/8be83aca034f60f105f357ff29e4334f99e54934641a545dc6dc5ee4f8211675
crc32: FB65A1AD
md5: 86ebefb76b9d8c8b6191063b038c7440
sha1: 68a1a54cadd22b24602d37531d1f0990655fcc0b
sha256: 8be83aca034f60f105f357ff29e4334f99e54934641a545dc6dc5ee4f8211675
sha512: a4d0328b9caf90cf665c5b07b52ee7779588ed71fac94a3b5dae565c33fd32b75512ac2065271a6278e7bd9314fdf650cdd4d2b5f28a7d4a2ebea0485d1c174b
ssdeep: 98304:HYV0jFaBG1i9n/ogDN3Mgq0wGNVf0vyIOz0hqvrwO0:HYVITiJogDRtJwGNVf0/Oo4vQ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E3669D0233A4C717C5AE067A9070159547B2EDC1B71AD7DBEBA861BE29F23C08934B77
sha3_384: 3cd6147564d56a50372bd8b85c6c249d24943e05135512b17a0a98180c6ddeda720e14e0ebe058b77a1c8ba8c20631f0
ep_bytes: 558bec83e4f881ec1c090000535657e8
timestamp: 2013-10-22 07:36:18


Version Info:

0: [No Data]

MSIL/UwS.Sw4uRCUp.A also known as:

BkavW32.Common.F728E1BE
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanTrojan.GenericKD.68496916
FireEyeTrojan.GenericKD.68496916
SkyhighBehavesLike.Win32.Trojan.vh
ALYacTrojan.GenericKD.68496916
Cylanceunsafe
SangforTrojan.Win32.Sw4urcup.V9f4
K7AntiVirusTrojan ( 0059f2c31 )
K7GWTrojan ( 0059f2c31 )
ESET-NOD32a variant of MSIL/UwS.Sw4uRCUp.A
BitDefenderTrojan.GenericKD.68496916
SophosMal/Generic-R
VIPRETrojan.GenericKD.68496916
Trapminemalicious.high.ml.score
EmsisoftTrojan.GenericKD.68496916 (B)
GDataTrojan.GenericKD.68496916
JiangminTrojan.Generic.dkoon
ArcabitTrojan.Generic.D4152E14
CynetMalicious (score: 100)
McAfeeArtemis!86EBEFB76B9D
MAXmalware (ai score=83)
MalwarebytesGeneric.Malware/Suspicious
TrendMicro-HouseCallTROJ_GEN.R002H09H723
RisingPUA.Sw4uRCUp!8.14197 (CLOUD)
MaxSecureTrojan.Malware.216149907.susgen
Cybereasonmalicious.cadd22
DeepInstinctMALICIOUS

How to remove MSIL/UwS.Sw4uRCUp.A?

MSIL/UwS.Sw4uRCUp.A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment