PUP.Optional.BMMedia removal instruction

The PUP.Optional.BMMedia is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What PUP.Optional.BMMedia virus can do?

Sample contains Overlay data
Presents an Authenticode digital signature
Authenticode signature is invalid
CAPE detected the shellcode get eip malware family
Yara detections observed in process dumps, payloads or dropped files

How to determine PUP.Optional.BMMedia?


File Info:
name: D00BBFE42798D8F6564A.mlw
path: /opt/CAPEv2/storage/binaries/6ad7b5f22ebfdcd2a47c575e82e40223b2658728a1c6863c80d93b73b13640ee
crc32: 6167D6E7
md5: d00bbfe42798d8f6564a943510722e8b
sha1: 1bdd2b1f129ea574fff521ebe9b6a0faf9ab393a
sha256: 6ad7b5f22ebfdcd2a47c575e82e40223b2658728a1c6863c80d93b73b13640ee
sha512: 5498271bd0d7ae1599eae0c59cad845b0e1ec5da3de09aaa8ee3b3c7337878ad05724defb70cecd7ef9b25325152cf3d1e21a3dc635415dbc577b680a96e16fc
ssdeep: 49152:q7h69iLyJl+w8QBYwNWYVp/kzMwzzEKdjdsRWRatMGF6z9PHIBhmTunbauzbdiI:Kh6Bl+xQr9kzMwzzEKdjdsRWRatMGF6S
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D7856A12E6C140BDE9F6C9F6427A17EA5D39AE215329D3D3B3903C1958F09C1FA3D286
sha3_384: 8348221e0771699fbcd440991c43aac4d46d0d1f9b5ec9bf9ac94afee7c2cb374f19dd6035474f8bf351871d94cd99e5
ep_bytes: e823e60000e97ffeffffe8838f000085
timestamp: 2014-05-03 19:24:54

Version Info:
0: [No Data]

PUP.Optional.BMMedia also known as:

Bkav	W32.AIDetectMalware
DrWeb	Trojan.Skymoner.4
CAT-QuickHeal	PUA.Ooolegamed.Gen
VirIT	Adware.Win32.Downware.DCP
APEX	Malicious
NANO-Antivirus	Riskware.Win32.Adw.dhcibn
Emsisoft	Application.AdMedia (A)
Trapmine	suspicious.low.ml.score
Webroot	W32.Malware.Gen
Microsoft	PUADlManager:Win32/DownloadAdmin
VBA32	BScope.Adware.Downware
Malwarebytes	PUP.Optional.BMMedia
Rising	Malware.DownloadAdmin!8.12DF6 (CLOUD)
Yandex	Trojan.GenAsa!3gasH669I/Y
MaxSecure	Trojan.Malware.300983.susgen
DeepInstinct	MALICIOUS
CrowdStrike	win/grayware_confidence_90% (D)

How to remove PUP.Optional.BMMedia?

PUP.Optional.BMMedia removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X