Malware

Troj/Steal-DWX removal guide

Malware Removal

The Troj/Steal-DWX is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Troj/Steal-DWX virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Troj/Steal-DWX?



File Info:

name: B790890DF017B457BB72.mlw
path: /opt/CAPEv2/storage/binaries/c8fb258737ce5a6aa3e25cffbfbfc83ca57803c32d2a48b52702b4dc3d00123a
crc32: E1AEC6B5
md5: b790890df017b457bb721fe77f59541a
sha1: efdc4c108d33b9d39c0483ca19e3c876bce5979b
sha256: c8fb258737ce5a6aa3e25cffbfbfc83ca57803c32d2a48b52702b4dc3d00123a
sha512: d21f405a2dd8b8e977efeda428c94eb6aa52e9869756d6a0f51846f2ca39721346919f5711828c44526a9739828a3c7fe8a935008a98a2c221f168adfdc4ffb1
ssdeep: 12288:V92+JCy0oPqrCibSGLES5O5ox1IrjyPrmL:V92HiPxi2GLEMKoxufsK
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T193F5F115B9C18032E533253609F4C6B45A3EF87109A25E9F27E40FBE8F213D1FB65A96
sha3_384: 74ff0f8cbdb173994a3623f704e8ac310ff59c3f435365e4ebc87338296b66e9d4b73733a412c515e4ff0bfa0fa0e2b0
ep_bytes: e8e2050000e974feffff3b0d40504200
timestamp: 2024-04-30 23:52:22


Version Info:

0: [No Data]

Troj/Steal-DWX also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Fugrafa.4!c
tehtrisGeneric.Malware
CynetMalicious (score: 100)
FireEyeGeneric.mg.b790890df017b457
SkyhighBehavesLike.Win32.Injector.wz
ALYacTrojan.GenericKDZ.106533
Cylanceunsafe
SangforTrojan.Win32.Save.a
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
APEXMalicious
Paloaltogeneric.ml
BitDefenderTrojan.GenericKDZ.106533
MicroWorld-eScanTrojan.GenericKDZ.106533
EmsisoftTrojan.GenericKDZ.106533 (B)
VIPRETrojan.GenericKDZ.106533
TrendMicroTrojanSpy.Win32.LUMMASTEALER.YXEEBZ
SophosTroj/Steal-DWX
WebrootW32.Trojan.Gen
GoogleDetected
Antiy-AVLTrojan/Win32.Sabsik
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ArcabitTrojan.Generic.D1A025
GDataTrojan.GenericKDZ.106533
VaristW32/Kryptik.MDQ.gen!Eldorado
AhnLab-V3Infostealer/Win.LummaC2.C5618521
McAfeeArtemis!B790890DF017
MAXmalware (ai score=80)
VBA32Malware-Cryptor.Inject.gen
MalwarebytesBackdoor.DCRat
TrendMicro-HouseCallTrojanSpy.Win32.LUMMASTEALER.YXEEBZ
RisingTrojan.Generic@AI.90 (RDML:ujuaPY+WJFtkUeRUGGMkzQ)
SentinelOneStatic AI – Malicious PE
FortinetPossibleThreat.PALLAS.H
DeepInstinctMALICIOUS

How to remove Troj/Steal-DWX?

Troj/Steal-DWX removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment