PUA

PUA.IgenericFC.S25076936 (file analysis)

Malware Removal

The PUA.IgenericFC.S25076936 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PUA.IgenericFC.S25076936 virus can do?

  • Dynamic (imported) function loading detected
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Binary compilation timestomping detected

How to determine PUA.IgenericFC.S25076936?



File Info:

name: 156439BCB48A331C46E9.mlw
path: /opt/CAPEv2/storage/binaries/e17e65e9dad8ee34a1eaed4dcc8d8d53eb40cccb3a27f4247b84ca8fee09fcb6
crc32: 296E3989
md5: 156439bcb48a331c46e942eb295b37b3
sha1: 677e3f3ccdff29b0994e5ab8863166e3ca38d7dc
sha256: e17e65e9dad8ee34a1eaed4dcc8d8d53eb40cccb3a27f4247b84ca8fee09fcb6
sha512: 8cef886df304b95a5d4fac9dacd4c2ff6e2d92e75afc7fe5983f2d3a38ef497c59d047bd5596e23ba3f563ac0cc3d9b05e3b238736c4f5a257f3f2a784174bfd
ssdeep: 98304:E9ro75XF9ro75XaQSJjsia4lBeBkG2Jo2:Yc7caPNBZlgT2JF
type: PE32+ executable (GUI) x86-64, for MS Windows
tlsh: T13BE5E00B5105CE10CA6445FC5DF17A8D23C8827C8C8B998AD8649EB597F37226E2EDF7
sha3_384: 8d08e81840c1b825cbcf29ecfa07b1c8feff90ec2cfb3941250d570eb54a50f3c8429030c1ecaadfb4cb9788f9e0fdf9
ep_bytes: 4d5a90000300000004000000ffff0000
timestamp: 2105-01-04 10:26:13


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 
FileDescription: OnixLauncher
FileVersion: 1.0.0.0
InternalName: OnixLauncher.exe
LegalCopyright: Copyright ©  2021
LegalTrademarks: 
OriginalFilename: OnixLauncher.exe
ProductName: OnixLauncher
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

PUA.IgenericFC.S25076936 also known as:

LionicTrojan.Win32.Bulz.4!c
CAT-QuickHealPUA.IgenericFC.S25076936
CylanceUnsafe
K7AntiVirusUnwanted-Program ( 005291ec1 )
K7GWUnwanted-Program ( 005291ec1 )
ESET-NOD32a variant of MSIL/DllInject.YD potentially unsafe
CynetMalicious (score: 100)
SophosGeneric Reputation PUA (PUA)
McAfee-GW-EditionArtemis!Trojan
GridinsoftRansom.Win64.Sabsik.sa
SentinelOneStatic AI – Suspicious PE
McAfeeArtemis!156439BCB48A
APEXMalicious
FortinetAdware/DllInject
WebrootW32.Malware.Gen
PandaPUP/Gamehack
CrowdStrikewin/malicious_confidence_100% (W)

How to remove PUA.IgenericFC.S25076936?

PUA.IgenericFC.S25076936 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment