Should I remove “PUA.CsdimonetizeFC.S24738135”?

The PUA.CsdimonetizeFC.S24738135 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What PUA.CsdimonetizeFC.S24738135 virus can do?

.NET file is packed/obfuscated with Confuser
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid
Anomalous .NET characteristics
Binary compilation timestomping detected

How to determine PUA.CsdimonetizeFC.S24738135?


File Info:
name: 6937D3D36306F1CA20CC.mlw
path: /opt/CAPEv2/storage/binaries/76966e461c5613c6d29d2971bce411908780daa90e0a27c0f007f042a41f8e92
crc32: FEDA1C9F
md5: 6937d3d36306f1ca20cc936bc9b455d5
sha1: 544a8b25263031aaaa4700e1379ed698750febb2
sha256: 76966e461c5613c6d29d2971bce411908780daa90e0a27c0f007f042a41f8e92
sha512: d6da0d025f92232ca136ca312467a8b6aab56d82370f859139c9775fb66f8c6a4e6d4e0ca809eabc659dd60a8e5b1d9301f8c48832bf401a55c65384f004e427
ssdeep: 6144:bV5E2wuz7ZstDH2wmhS+uQc0oUPq4QwoV0oIT9dTOJvcBkl7wGAPN2CktV+lC350:bV51NPiMwmhZuVZwoV0oIT9dTOJvcBk0
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16074F69D3660B2DFC857C8768AA82D74FA6164BB931B9203D01315EDEE4D99BCF140F2
sha3_384: e25be2f3b1f77147fd0923d01d69b003fe84db856391f4167a0e5c8f93bef795475a4a9ecad33bea6b50f09c35b2b02a
ep_bytes: ff250020400000000000000000000000
timestamp: 2068-08-19 10:53:14

Version Info:
0: [No Data]

PUA.CsdimonetizeFC.S24738135 also known as:

Lionic	Adware.MSIL.Csdi.2!c
FireEye	Generic.mg.6937d3d36306f1ca
CAT-QuickHeal	PUA.CsdimonetizeFC.S24738135
Sangfor	Suspicious.Win32.Save.a
K7AntiVirus	Adware ( 005684bb1 )
K7GW	Adware ( 005684bb1 )
CrowdStrike	win/malicious_confidence_90% (W)
Cyren	W32/Trojan.AATM-3591
Symantec	Trojan.Gen.MBT
APEX	Malicious
Kaspersky	not-a-virus:UDS:AdWare.MSIL.Csdi.gen
TrendMicro	TROJ_GEN.R067C0PJ721
McAfee-GW-Edition	BehavesLike.Win32.Generic.fc
Jiangmin	AdWare.MSIL.nmpo
Antiy-AVL	Trojan/Generic.ASMalwS.34ACC64
Microsoft	Backdoor:Win32/Bladabindi!ml
Cynet	Malicious (score: 100)
McAfee	GenericRXQG-CO!6937D3D36306
VBA32	TScope.Trojan.MSIL
TrendMicro-HouseCall	TROJ_GEN.R067C0PJ721
SentinelOne	Static AI – Malicious PE
eGambit	Unsafe.AI_Score_99%
Fortinet	Adware/Csdi
Cybereason	malicious.526303
Panda	Trj/GdSda.A

How to remove PUA.CsdimonetizeFC.S24738135?

PUA.CsdimonetizeFC.S24738135 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X