Malware

Troj/Agent-BGLN (file analysis)

Malware Removal

The Troj/Agent-BGLN is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Troj/Agent-BGLN virus can do?

  • Presents an Authenticode digital signature
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Troj/Agent-BGLN?



File Info:

crc32: 95A5E675
md5: 443159b0506a6ee871cda1dc30c78d2f
name: 443159B0506A6EE871CDA1DC30C78D2F.mlw
sha1: 889c46282ab6ec5e8a803ef9925a7c160ca0a052
sha256: dde23e6b8413ccac53627a5b4c859041cdc0271ea76afa320174a9622f785dd5
sha512: 096443b28514867e1f5ea68510c050c70379437bf53fd2a7862974ee9b01bf1a1e46751d9e8355c361cdb33afeadb299ad5751fa54b0d03c6dafa0b501c567fa
ssdeep: 98304:LM0fZaQOhqM0fZaQOh1M0fZaQOh0M0fZaQOh:LBLO8BLOrBLOWBLO
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2001-2021 Python Software Foundation. Copyright xa9 2000 BeOpen.com. Copyright xa9 1995-2001 CNRI. Copyright xa9 1991-1995 SMC.
InternalName: Python Launcher
FileVersion: 3.9.2
CompanyName: Python Software Foundation
ProductName: Python
ProductVersion: 3.9.2
FileDescription: Python
OriginalFilename: py.exe
Translation: 0x0000 0x04b0

Troj/Agent-BGLN also known as:

Elasticmalicious (high confidence)
DrWebTrojan.Click3.29339
CynetMalicious (score: 100)
CAT-QuickHealTrojan.GenericPMF.S22783869
ALYacGen:Variant.Midie.101595
Cybereasonmalicious.0506a6
CyrenW32/Agent.CGR.gen!Eldorado
SymantecML.Attribute.HighConfidence
AvastWin32:TrojanX-gen [Trj]
ClamAVWin.Malware.Fileinfector-9834127-0
BitDefenderGen:Variant.Midie.101595
NANO-AntivirusTrojan.Win32.Clicker.dapdse
MicroWorld-eScanGen:Variant.Midie.101595
Ad-AwareGen:Variant.Midie.101595
SophosTroj/Agent-BGLN
BitDefenderThetaGen:NN.ZexaF.34266.amGfa0A48Fd
VIPRETrojan.Win32.Generic!BT
FireEyeGen:Variant.Midie.101595
EmsisoftGen:Variant.Midie.101595 (B)
Antiy-AVLTrojan/Generic.ASMalwS.346C99D
MicrosoftTrojan:Win32/Wacatac.B!ml
GDataWin32.Trojan.PSE.HEQIO3
AhnLab-V3Trojan/Win.Ymacco.C4575129
MAXmalware (ai score=81)
VBA32Trojan.Click
PandaTrj/Genetic.gen
YandexTrojan.Agent!sDgRjKyvUDs
IkarusTrojan.Dropper
FortinetW32/Agent.CGR!tr
AVGWin32:TrojanX-gen [Trj]

How to remove Troj/Agent-BGLN?

Troj/Agent-BGLN removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment