Spy

About “Spyware.PasswordStealer.44” infection

Malware Removal

The Spyware.PasswordStealer.44 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
6-day free trial available.

What Spyware.PasswordStealer.44 virus can do?

  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Spyware.PasswordStealer.44?


File Info:

crc32: 133A52CF
md5: 7206a29964c7ec4262a345c8cbbb4066
name: 7206A29964C7EC4262A345C8CBBB4066.mlw
sha1: d7e532f922cf558ea088aaa0a5b3df743761edca
sha256: 25975a59f77ddf40e468cb5030c4317e060c8269fe89614d3b83de9a22c40d01
sha512: d6ed89796b46c3004cdeb15cace45efd5adce472be9f041626f23f4d5e64549c312f683161a55994eaf21fb016f6f4a00fcf45d2b34ca4d0304de2c2cf143e52
ssdeep: 6144:Zqf+BLtABPDzNdeMNHjjDXU4WV0vR2RA1D0rns:QN/jjDXU4VZ71D0s
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: FuckTheSystem Copyright xa9 2021
Assembly Version: 1.6.2.0
InternalName: Insidious.exe
FileVersion: 1.6.2.0
CompanyName: 44 CALIBER
LegalTrademarks:
Comments: 44 CALIBER
ProductName: 44 CALIBER
ProductVersion: 1.6.2.0
FileDescription: 44 CALIBER
OriginalFilename: Insidious.exe

Spyware.PasswordStealer.44 also known as:

K7AntiVirusPassword-Stealer ( 0057016e1 )
Elasticmalicious (high confidence)
DrWebTrojan.PWS.StealerNET.76
CynetMalicious (score: 99)
ALYacGeneric.DataStealer.1.F10D7DFC
CrowdStrikewin/malicious_confidence_80% (W)
AlibabaTrojanPSW:MSIL/Stealgen.55bd7099
K7GWPassword-Stealer ( 0057016e1 )
Cybereasonmalicious.964c7e
CyrenW32/MSIL_Agent.BSF.gen!Eldorado
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of MSIL/PSW.Agent.RML
APEXMalicious
AvastWin32:MalwareX-gen [Trj]
ClamAVWin.Packed.Datastealer-9856291-0
KasperskyHEUR:Trojan-PSW.MSIL.Agensla.gen
BitDefenderGeneric.DataStealer.1.F10D7DFC
MicroWorld-eScanGeneric.DataStealer.1.F10D7DFC
Ad-AwareGeneric.DataStealer.1.F10D7DFC
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZemsilF.34686.rm0@aOv!8Dp
McAfee-GW-EditionGenericRXMY-AY!7206A29964C7
FireEyeGeneric.mg.7206a29964c7ec42
EmsisoftGeneric.DataStealer.1.F10D7DFC (B)
JiangminHoax.DeceptPCClean.acf
AviraHEUR/AGEN.1141546
MicrosoftPWS:MSIL/Stealgen.GA!MTB
GDataGeneric.DataStealer.1.F10D7DFC
AhnLab-V3Malware/Gen.RL_Reputation.C4300952
McAfeeGenericRXMY-AY!7206A29964C7
MAXmalware (ai score=89)
MalwarebytesSpyware.PasswordStealer.44
PandaTrj/GdSda.A
RisingStealer.Agent!1.D483 (CLOUD)
IkarusTrojan.MSIL.Spy
FortinetMSIL/Agent.RML!tr
AVGWin32:MalwareX-gen [Trj]
Paloaltogeneric.ml

How to remove Spyware.PasswordStealer.44?

Spyware.PasswordStealer.44 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment