Malware

About “Nemesis.8742” infection

Malware Removal

The Nemesis.8742 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Nemesis.8742 virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid

How to determine Nemesis.8742?



File Info:

name: 22B17FDC4332EAABB85B.mlw
path: /opt/CAPEv2/storage/binaries/9e3e63a38f1bcf871501f1636376b7fd4cdb1ee0766758c1eed7317d505ec60c
crc32: AC383C34
md5: 22b17fdc4332eaabb85b40b3a93e13e3
sha1: 1f1c55d1a7fe76d47b3b170b02165052f79aedcd
sha256: 9e3e63a38f1bcf871501f1636376b7fd4cdb1ee0766758c1eed7317d505ec60c
sha512: f3b4d48ac6a8ac53e16e431221d58a01c086ec9e29c052ded29147a831fee4e53a0071093764eb3d047fc6e316f898b54e63bc4a765296a74efba52eb3816c18
ssdeep: 6144:2PpKCEW+rQIDblCQx4HXGHaXe3aVXyslvkkh1zySItFgI75uFkkhg:eT+rQIDblCQx4HXGHaXe3a5ey2RfgINd
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T184448DBA15C0C663FBD4D1FDD86D6A3D8AEE4E0280A52406696E7CC97E2FF774409870
sha3_384: 84eae254bf57b61866624946a4e4f83868c86b1789066104150361aa0b19a584d13e200b2e20bed9960b6d17e6301d64
ep_bytes: 81ec8401000053555633db57895c241c
timestamp: 2013-05-19 23:53:02


Version Info:

Comments: http://www.31dd.com
CompanyName: MeinV
FileDescription: Installer Application
FileVersion: 1.0.0.0
LegalCopyright: Corporation. All rights reserved.
ProductName: 绿豆浏览器
ProductVersion: 1.0.0.0
Translation: 0x0804 0x03a8

Nemesis.8742 also known as:

BkavW32.Common.3E76A8B7
MicroWorld-eScanGen:Variant.Nemesis.8742
FireEyeGen:Variant.Nemesis.8742
CAT-QuickHealTrjnDwnldr.NSIS.Hicrazyk.A
SkyhighBehavesLike.Win32.Dropper.dc
McAfeeArtemis!22B17FDC4332
Cylanceunsafe
ZillyaDownloader.Chindo.Win32.2758
SangforPUP.Win32.StartPage.Vcog
CrowdStrikewin/malicious_confidence_70% (D)
AlibabaTrojanDownloader:Win32/Chindo.a82604b6
K7GWTrojan-Downloader ( 0055e3ed1 )
K7AntiVirusTrojan-Downloader ( 0055e3ed1 )
SymantecTrojan.Gen.MBT
Elasticmalicious (moderate confidence)
ESET-NOD32NSIS/TrojanDownloader.Grinidou.I
APEXMalicious
TrendMicro-HouseCallTrojan.Win32.STARTPAGE.USBLCH24
KasperskyTrojan-Downloader.Win32.Agent.hehh
BitDefenderGen:Variant.Nemesis.8742
NANO-AntivirusTrojan.Script.Agent.dserit
AvastWin32:Malware-gen
TencentWin32.Trojan-Downloader.Agent.Tnkl
SophosMal/Generic-S
GoogleDetected
F-SecureHeuristic.HEUR/AGEN.1373315
DrWebTrojan.StartPage.62192
VIPREGen:Variant.Nemesis.8742
TrendMicroTrojan.Win32.STARTPAGE.USBLCH24
EmsisoftGen:Variant.Nemesis.8742 (B)
WebrootPua.Meinv
VaristW32/Chindo.S.gen!Eldorado
AviraHEUR/AGEN.1373315
MAXmalware (ai score=95)
Antiy-AVLTrojan[Downloader]/Win32.AdLoad.gen
MicrosoftTrojan:Win32/Startpage!rfn
ArcabitTrojan.Nemesis.D2226
ZoneAlarmTrojan-Downloader.Win32.Agent.hehh
GDataGen:Variant.Nemesis.8742
CynetMalicious (score: 99)
ALYacGen:Variant.Nemesis.8742
VBA32suspected of Trojan.Downloader.gen
MalwarebytesGeneric.Malware/Suspicious
PandaTrj/CI.A
IkarusTrojan-Downloader.NSIS.Agent
FortinetW32/Agent.NOS!tr.dldr
AVGWin32:Malware-gen
DeepInstinctMALICIOUS
alibabacloudTrojan[downloader]:Win/Grinidou.I

How to remove Nemesis.8742?

Nemesis.8742 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment