Trojan

Trojan.Agent.CTLP malicious file

Malware Removal

The Trojan.Agent.CTLP is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.CTLP virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Executed a command line with /C or /R argument to terminate command shell on completion which can be used to hide execution
  • Uses Windows utilities for basic functionality
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid
  • CAPE detected the Tofsee malware family
  • Deletes executed files from disk
  • Created a service that was not started
  • Uses suspicious command line tools or Windows utilities
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Agent.CTLP?



File Info:

name: 8751CB943CA6EE378406.mlw
path: /opt/CAPEv2/storage/binaries/5c6515cf0959a5c35e9bdbfd2cc3bc61c907957d8ac9f1d16fb255967ab20e85
crc32: 2C7A91E8
md5: 8751cb943ca6ee378406da5ab89fccd1
sha1: 7983843afbcb657de69db1514f8be1379ce9e04f
sha256: 5c6515cf0959a5c35e9bdbfd2cc3bc61c907957d8ac9f1d16fb255967ab20e85
sha512: 2ed00af0c40b0cfe71be042c1830e993a44ec4cd3194a5a52c009651c3d236ae1aca6f93f6f8761e0002d203ca8c317a5ee38781adc4e789b8326858247875ca
ssdeep: 3072:6+nfVA7JOe3Av0HEKuTDx1sjIBVU1d+e+Eiew7:E7IcAv0kKuTQFd+Wi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C5B6442BDC21AB29DE02783490C24B63FED6A21B5ECF5B23FD8B0A1FF4555469E40B54
sha3_384: f959fe5ab4f5abe9d157aff76949482c7e09b8e479ad1812f3deeff405e3f33ceede253136ad86779e82fa7738dee896
ep_bytes: 31d2558d0d2b01000089e56a008d65c4
timestamp: 2016-06-09 09:13:41


Version Info:

0: [No Data]

Trojan.Agent.CTLP also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Agent.CTLP
ClamAVWin.Packed.Tofsee-7476330-0
FireEyeGeneric.mg.8751cb943ca6ee37
SkyhighBehavesLike.Win32.Dropper.vz
ALYacTrojan.Agent.CTLP
MalwarebytesGeneric.Malware.AI.DDS
ZillyaBackdoor.Poison.Win32.88420
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 005664441 )
K7GWTrojan ( 005664441 )
CrowdStrikewin/malicious_confidence_100% (D)
ArcabitTrojan.Agent.CTLP
VirITTrojan.Win32.KillProc.DDDE
SymantecPacked.Generic.493
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Kryptik.GBPS
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.Generic
BitDefenderTrojan.Agent.CTLP
NANO-AntivirusTrojan.Win32.Poison.ewxthb
AvastWin32:Evo-gen [Trj]
TencentMalware.Win32.Gencirc.10b21007
SophosMal/Elenoocka-E
F-SecureTrojan.TR/Dropper.Gen
DrWebTrojan.KillProc.54838
VIPRETrojan.Agent.CTLP
TrendMicroRansom_CERBER.SMALY0A
Trapminemalicious.high.ml.score
EmsisoftTrojan.Agent.CTLP (B)
SentinelOneStatic AI – Malicious PE
JiangminBackdoor.Poison.bqx
GoogleDetected
AviraTR/Dropper.Gen
MAXmalware (ai score=81)
Antiy-AVLTrojan[Backdoor]/Win32.Poison
XcitiumTrojWare.Win32.Crypt.C@7vajd0
MicrosoftBackdoor:Win32/Tofsee.T
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.Agent.CTLP
VaristW32/Agent.AQR.gen!Eldorado
AhnLab-V3Backdoor/Win32.Poison.R217763
McAfeeGenericRXDS-MP!8751CB943CA6
VBA32Backdoor.Poison
Cylanceunsafe
ZonerTrojan.Win32.64650
TrendMicro-HouseCallRansom_CERBER.SMALY0A
RisingTrojan.Kryptik!1.AE8C (CLASSIC)
YandexTrojan.GenAsa!eA3H0JI9Hlo
IkarusTrojan.Win32.Tofsee
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/GenKryptik.BMXO!tr
BitDefenderThetaGen:NN.ZexaF.36792.@tW@aKVzfgmi
AVGWin32:Evo-gen [Trj]
Cybereasonmalicious.afbcb6
DeepInstinctMALICIOUS

How to remove Trojan.Agent.CTLP?

Trojan.Agent.CTLP removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment