Malware

Nemesis.31815 (file analysis)

Malware Removal

The Nemesis.31815 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Nemesis.31815 virus can do?

  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Deletes executed files from disk

How to determine Nemesis.31815?



File Info:

name: 12D790FB554B53E95EFB.mlw
path: /opt/CAPEv2/storage/binaries/2feda74499cfeb1a83899189d10081258c5ba570769f9966d9fd2569bc41e266
crc32: 104D225C
md5: 12d790fb554b53e95efb81d197f58ff6
sha1: 5472ab8466b445356d49140f663462c20986d7fa
sha256: 2feda74499cfeb1a83899189d10081258c5ba570769f9966d9fd2569bc41e266
sha512: 9034aea27bd77c5df10f2543dde7346a3a4828ea9a10c9ec723a4363cebbef3a9e801d5b580c862c0e414bf101bdd2ed2f559e1ddf9202e3e9719a7f911b3483
ssdeep: 6144:rfL+oqfQFtYfLEgLNClNS3tvIQNtP0JpUEsqquZmZetFZcyR/1YqZLB4MrXKM/7A:rfLAQILNMgIQkXZmZULZLB+/
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17DF44B02F3848332D1B316B665AEE3D2EB35B82C2671921F645CE19D21B4E21E77B7D1
sha3_384: 4fa878bae97759024f57ba68c095de63464e4f54ec724f518238eae1a3a90c9199f39c8459a60cc4478e0d134054bf7d
ep_bytes: 81ecf80300005556576a205f33ed6801
timestamp: 2023-07-02 02:09:48


Version Info:

0: [No Data]

Nemesis.31815 also known as:

BkavW32.AIDetectMalware
tehtrisGeneric.Malware
MicroWorld-eScanGen:Variant.Nemesis.31815
Cylanceunsafe
Cybereasonmalicious.466b44
ESET-NOD32Win32/TrojanDownloader.Agent.HNK
APEXMalicious
KasperskyHEUR:Trojan-Downloader.Win32.OffLoader.gen
BitDefenderGen:Variant.Nemesis.31815
AvastNSIS:DropperX-gen [Drp]
F-SecureTrojan.TR/Adload.Gen
VIPREGen:Variant.Nemesis.31815
Trapminemalicious.moderate.ml.score
FireEyeGen:Variant.Nemesis.31815
EmsisoftGen:Variant.Nemesis.31815 (B)
GDataGen:Variant.Nemesis.31815
GoogleDetected
AviraTR/Adload.Gen
VaristW32/Trojan.CZNG-2275
Antiy-AVLTrojan[Downloader]/NSIS.AdLoad.ds
Kingsoftmalware.kb.a.717
ArcabitTrojan.Nemesis.D7C47
ZoneAlarmHEUR:Trojan-Downloader.Win32.OffLoader.gen
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
VBA32suspected of Trojan.Downloader.gen
MAXmalware (ai score=89)
AVGNSIS:DropperX-gen [Drp]

How to remove Nemesis.31815?

Nemesis.31815 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment