Malware

Nemesis.8490 (B) removal instruction

Malware Removal

The Nemesis.8490 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Nemesis.8490 (B) virus can do?

  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Attempts to modify desktop wallpaper

How to determine Nemesis.8490 (B)?



File Info:

name: CEFF0C3FE4EBDF578270.mlw
path: /opt/CAPEv2/storage/binaries/008c1114b5f9768216e93f1ea9332db6051d02551991e38ca49f9c5631979dc9
crc32: C6696561
md5: ceff0c3fe4ebdf578270e7bc3738aa33
sha1: 9b8a09dc1d8848b1882e62cc0b7adb6b14fdf394
sha256: 008c1114b5f9768216e93f1ea9332db6051d02551991e38ca49f9c5631979dc9
sha512: 40f33cba0379b5c8af9723e1ec06c3950711c1a067d591a5f074048e939cd7edb253bce2773a68d2195d27fa5f854b1085e37964b087c4cc663657aedefbdc89
ssdeep: 12288:uYqpoZBQTy1a0fGn6ZIsBMVnTQhulrgb1WleBtCwI4T+bt:uYCxTy1DGn+CnEcKIwCh4Tkt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D9E4C0A2F6915882C82A1B7059BF4F042261FD949EF2175E29DC73293EF31CB115B9CB
sha3_384: 2a4ca49f58ce90ea4f925634ea2a8f003f8f52c3655a90a5e7abdeea6cf9376cc7d2665de941b5202f87e4021b2395cd
ep_bytes: 558bec81ecf40300005356576a205f33
timestamp: 2021-09-25 21:56:47


Version Info:

Comments: Affolkningerb
CompanyName: Contentablegul171
FileDescription: Feminiseres203
FileVersion: 7.2.12
LegalCopyright: BRUDSTYKKETONEI
LegalTrademarks: DAGSOMMERFUGLEU
ProductName: Veratrinizedu57
Translation: 0x0409 0x04b0

Nemesis.8490 (B) also known as:

DrWebTrojan.Inject4.34410
MicroWorld-eScanGen:Variant.Nemesis.8490
ALYacGen:Variant.Nemesis.8490
SangforRiskware.Win32.Wacapew.C
K7AntiVirusTrojan ( 005903451 )
K7GWTrojan ( 005903451 )
CyrenW32/Trojan.EOVK-1823
Elasticmalicious (high confidence)
ESET-NOD32NSIS/Injector.ASH
BitDefenderGen:Variant.Nemesis.8490
AvastNSIS:InjectorX-gen [Trj]
McAfee-GW-EditionBehavesLike.Win32.Dropper.jh
FireEyeGen:Variant.Nemesis.8490
EmsisoftGen:Variant.Nemesis.8490 (B)
IkarusTrojan.MSIL.Inject
GDataGen:Variant.Nemesis.8490
ArcabitTrojan.Nemesis.D212A
MicrosoftProgram:Win32/Wacapew.C!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Wacatac.C5176679
McAfeeArtemis!CEFF0C3FE4EB
MAXmalware (ai score=80)
VBA32Trojan.GuLoader
MalwarebytesTrojan.GuLoader
APEXMalicious
YandexTrojan.Igent.bYdyns.4
AVGNSIS:InjectorX-gen [Trj]
PandaTrj/RnkBend.A

How to remove Nemesis.8490 (B)?

Nemesis.8490 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment