Trojan

Trojan.Agent.FHHS (B) malicious file

Malware Removal

The Trojan.Agent.FHHS (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.FHHS (B) virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • At least one IP Address, Domain, or File Name was found in a crypto call
  • Reads data out of its own binary image
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • Anomalous binary characteristics

How to determine Trojan.Agent.FHHS (B)?



File Info:

crc32: BB34A7A9
md5: 48db49654ad6f84384f97294ed2d1abb
name: 48DB49654AD6F84384F97294ED2D1ABB.mlw
sha1: b52f4e9155405a60fa6f131673a798614e2113c7
sha256: 856d264e032f321c85ecf63704edda9a83ab44918b42da2b8b528c1e8707f254
sha512: 5cfb27b25aec32896f67fc065df4935cca2ac451f533607e8da910927cfb983004200893d81b92e6ece454e7d617fe85fb0f7955545fbab6804fa6f10a5e6753
ssdeep: 12288:GqkpqRJ6oFDnJVs+3i83i4Bx+a/wiye17x:1DJJyB4ewwxeh
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

InternalName: ordinaryfits.exe
FileVersion: 136.0.50.391
CompanyName: Maras Group
ProductName: SQL Database
ProductVersion: 136.0.50.391
FileDescription: .NET Config File Wrapper
OriginalFilename: ordinaryfits.exe
Translation: 0x0000 0x04b0

Trojan.Agent.FHHS (B) also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (D)
Cybereasonmalicious.155405
ESET-NOD32a variant of Win32/GenKryptik.FFFT
APEXMalicious
AvastWin32:BankerX-gen [Trj]
KasperskyVHO:Trojan.Win32.Sdum.gen
BitDefenderTrojan.Agent.FHGV
MicroWorld-eScanTrojan.Agent.FHGV
Ad-AwareTrojan.Agent.FHGV
BitDefenderThetaGen:NN.ZexaF.34688.Du0@aakGLBhc
FireEyeGeneric.mg.48db49654ad6f843
EmsisoftTrojan.Agent.FHHS (B)
SentinelOneStatic AI – Suspicious PE
GDataTrojan.Agent.FHGV
MAXmalware (ai score=85)
AVGWin32:BankerX-gen [Trj]

How to remove Trojan.Agent.FHHS (B)?

Trojan.Agent.FHHS (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment