Malware

PWS:Win32/Lolyda.AH malicious file

Malware Removal

The PWS:Win32/Lolyda.AH is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What PWS:Win32/Lolyda.AH virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family

How to determine PWS:Win32/Lolyda.AH?



File Info:

name: 8BAF7D2AB9A72909A246.mlw
path: /opt/CAPEv2/storage/binaries/69fc86619fa017074214a4b1e06c8db32b8e6ed6ed1a52fc21babf29f6336ba0
crc32: 61E1CCFE
md5: 8baf7d2ab9a72909a246bfa5501d061c
sha1: df6ab91da55809f80139f924ab1cbb8b867ea085
sha256: 69fc86619fa017074214a4b1e06c8db32b8e6ed6ed1a52fc21babf29f6336ba0
sha512: bd8f7afcbbcc440e9b721393e8fd5bb3c2aacf887aab545225a86bc24eb541af46fc4f0bbb6640a119b4280e4a9bbe87d15c3af49ecd2b07614dd7a1b7238c0d
ssdeep: 384:3yJR0IAKaHi7wfuSKaNEE6s6synYe7VxBtpFP0HBA6dQG+Cz3Z8ql1Mv:3c+IAKxe97Ebs6syn3RPqA6dQGLj1Mv
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13D92C03455F48E8FC08B06F435FB96F155BD84340E84A0B748BB9C923A4362E91E77AB
sha3_384: 07690f00e756d210a29d6f9568e5605074a48c4b13df37e861a227d9fa9c17586a020c55a4c1e051b3f3b1eb12368696
ep_bytes: 909090909c60e800000000582d375c4a
timestamp: 2009-05-02 08:17:36


Version Info:

0: [No Data]

PWS:Win32/Lolyda.AH also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.myBd
MicroWorld-eScanDropped:Trojan.PWS.OnLineGames.KBXS
FireEyeGeneric.mg.8baf7d2ab9a72909
CAT-QuickHealTrojan.Generic.29560
SkyhighBehavesLike.Win32.Generic.mc
McAfeeArtemis!8BAF7D2AB9A7
MalwarebytesGeneric.Malware.AI.DDS
ZillyaTrojan.OnLineGames.Win32.7792
SangforSuspicious.Win32.Save.a
K7AntiVirusPassword-Stealer ( 0055e3dc1 )
AlibabaTrojanPSW:Win32/Lolyda.5166ff66
K7GWPassword-Stealer ( 0055e3dc1 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaAI:Packer.11C9FFB31E
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/PSW.OnLineGames.NYW
APEXMalicious
ClamAVWin.Trojan.Onlinegames-5920
KasperskyTrojan-GameThief.Win32.OnLineGames2.pc
BitDefenderDropped:Trojan.PWS.OnLineGames.KBXS
NANO-AntivirusTrojan.Win32.HLLW.bbkngk
AvastWin32:Dogrobot [Drp]
SophosMal/Generic-S
F-SecureTrojan.TR/Crypt.ZPACK.Gen
DrWebTrojan.DownLoad11.84
VIPREDropped:Trojan.PWS.OnLineGames.KBXS
TrendMicroTROJ_GEN.R002C0DB724
Trapminemalicious.high.ml.score
EmsisoftDropped:Trojan.PWS.OnLineGames.KBXS (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Antavka.b
WebrootW32.Trojan.Gen
GoogleDetected
AviraTR/Crypt.ZPACK.Gen
VaristW32/Troj_Obfusc.N.gen!Eldorado
Antiy-AVLTrojan/Win32.Unknown
Kingsoftmalware.kb.a.1000
MicrosoftPWS:Win32/Lolyda.AH
XcitiumTrojWare.Win32.Kryptik.~NNZ@1qgexn
ArcabitTrojan.PWS.OnLineGames.KBXS
ZoneAlarmTrojan-GameThief.Win32.OnLineGames2.pc
GDataDropped:Trojan.PWS.OnLineGames.KBXS
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.C168713
VBA32BScope.TrojanPSW.Kykymber
ALYacDropped:Trojan.PWS.OnLineGames.KBXS
MAXmalware (ai score=99)
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DB724
TencentWin32.Trojan-GameThief.Onlinegames2.Vgil
IkarusTrojan.Win32.Dogrobot
MaxSecureTrojan.Malware.74836100.susgen
FortinetW32/Onlinegames.BLW!tr
AVGWin32:Dogrobot [Drp]
Cybereasonmalicious.ab9a72
DeepInstinctMALICIOUS
alibabacloudTrojan[stealer]:Win/OnLineGames2.pc

How to remove PWS:Win32/Lolyda.AH?

PWS:Win32/Lolyda.AH removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment