Trojan

Trojan.Agent.ELPD removal instruction

Malware Removal

The Trojan.Agent.ELPD is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.ELPD virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Attempts to mimic the file extension of a PDF document by having ‘pdf’ in the file name.
  • Uses Windows utilities for basic functionality
  • A process attempted to delay the analysis task by a long amount of time.
  • Creates a hidden or system file
  • Attempts to modify proxy settings
  • Harvests information related to installed mail clients
  • Anomalous binary characteristics

Related domains:

www.bing.com
form-updater.at

How to determine Trojan.Agent.ELPD?



File Info:

crc32: E9FF6C07
md5: 4f1c6e0a723272da3d6c1e8cbbfefb70
name: fv_022020.pdf.exe
sha1: 2119d05b53e77b2a192f28d9aadc2ebd72944376
sha256: ae93bd58281174383e3808f7a37ecb6e290eea86a6e7add620d03752cfd77d03
sha512: df6db85190c4e929161223a37219af7bfbf2c43d32cf9277d291d5a70ee936f543fc717e7471a54efeca537f3a19b471fa0a243ad1fc1eb4b733bb3bb4ff727c
ssdeep: 49152:2+ClIzyVOpV6UoA3dDUcFpEMbjaj6V1U6XcEHiWbz6r/Fky+oUPsT:olIzygV6c3dDpFpEMb+j6VFXUW8Fky+
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright (c) 2014-2015, Anger Allowthem Software Limited
InternalName: Anger Allowthem
FileVersion: 7.7.68.55
CompanyName: Anger Allowthem Software Limited
ProductName: Anger Allowthem
ProductVersion: 7.7.68.55
FileDescription: Anger Allowthem
OriginalFilename: stat.exe
Translation: 0x0409 0x04e4

Trojan.Agent.ELPD also known as:

MicroWorld-eScanTrojan.Agent.ELPD
McAfeeArtemis!4F1C6E0A7232
BitDefenderTrojan.Agent.ELPD
ArcabitTrojan.Agent.ELPD
ESET-NOD32a variant of Win32/GenKryptik.EDYR
KasperskyTrojan-Banker.Win32.Cridex.itn
APEXMalicious
RisingTrojan.GenKryptik!8.AA55 (CLOUD)
Endgamemalicious (high confidence)
EmsisoftTrojan.Agent.ELPD (B)
F-SecureTrojan.TR/AD.UrsnifDropper.javlx
McAfee-GW-EditionBehavesLike.Win32.Dropper.th
FortinetW32/GenKryptik.ECJC!tr
FireEyeTrojan.Agent.ELPD
SophosMal/Generic-S
WebrootW32.Trojan.Trickbot
MAXmalware (ai score=89)
MicrosoftTrojan:Win32/Wacatac.C!ml
ZoneAlarmTrojan-Banker.Win32.Cridex.itn
Acronissuspicious
Ad-AwareTrojan.Agent.ELPD
IkarusWin32.Outbreak
GDataWin32.Trojan-Spy.Ursnif.EBOWBQ
AVGWin32:Malware-gen
AvastWin32:Malware-gen

How to remove Trojan.Agent.ELPD?

Trojan.Agent.ELPD removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment