Trojan

NSIS/TrojanDownloader.Chindo.AB removal guide

Malware Removal

The NSIS/TrojanDownloader.Chindo.AB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What NSIS/TrojanDownloader.Chindo.AB virus can do?

  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine NSIS/TrojanDownloader.Chindo.AB?



File Info:

crc32: C776FE20
md5: da0f92c8bd2298a2441e8fe9da55f360
name: DA0F92C8BD2298A2441E8FE9DA55F360.mlw
sha1: cac212b2303dda8767b93463923a5816b707959a
sha256: 5b4e89d4e7b8b1561086a5d20586f35f1222401f290b970956f9e07ef32c66f3
sha512: 430a59f67c6af25b70593d9c5fb4ec5a5e496ff0f68da81dbb6b8ae590cb109b251bbdc360d4430439e4a48b014a009cb7e4f32ac997e0f7fcd4c5ec891148a2
ssdeep: 3072:RQIURTXJSasQA2wTJJ2+MykoOuttPAyLzB/HMqzKu8EU9AfxH5xRvuoXnhZg:Rs4nQAb32+Vcutt4ynB/Hb2Qx5uoXnbg
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive


Version Info:

ProductName: BaiDu Player
FileVersion: 1.14.0.101
Comments: xb0xd9xb6xc8xd3xb0xd2xf4
FileDescription: BaiduPlayer Setup
Translation: 0x0804 0x04e4

NSIS/TrojanDownloader.Chindo.AB also known as:

SangforMalware
CrowdStrikewin/malicious_confidence_70% (D)
BaiduNSIS.Trojan-Downloader.Chindo.b
APEXMalicious
AvastWin32:Malware-gen
NANO-AntivirusRiskware.Nsis.Chindo.dzviae
McAfee-GW-EditionBehavesLike.Win32.Dropper.dc
SophosGeneric PUA MK (PUA)
IkarusTrojan-Downloader.NSIS.Chindo
MicrosoftSoftwareBundler:Win32/Chindo
McAfeeArtemis!DA0F92C8BD22
MalwarebytesGeneric.Malware/Suspicious
ESET-NOD32NSIS/TrojanDownloader.Chindo.AB
TencentNsis.Trojan-downloader.Chindo.Wqdb
AVGWin32:Malware-gen

How to remove NSIS/TrojanDownloader.Chindo.AB?

NSIS/TrojanDownloader.Chindo.AB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment