Trojan

Trojan.Agent.PMA removal tips

Malware Removal

The Trojan.Agent.PMA is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Agent.PMA virus can do?

  • Dynamic (imported) function loading detected
  • Performs HTTP requests potentially not found in PCAP.
  • HTTPS urls from behavior.
  • Authenticode signature is invalid
  • Attempts to modify proxy settings

How to determine Trojan.Agent.PMA?



File Info:

name: FFCFEF9CE50956EC336F.mlw
path: /opt/CAPEv2/storage/binaries/f1834639036df73cab720c21047e02ca2da4125ec7900374ad44e7b9267b44af
crc32: F19DEBEF
md5: ffcfef9ce50956ec336fb27ad245c9cc
sha1: 58e092f9f8e8db016e762eaba1da30cda7677a03
sha256: f1834639036df73cab720c21047e02ca2da4125ec7900374ad44e7b9267b44af
sha512: 139e39bea3e4f45a3c12dcaaf98a10aec6d2625e9965a238e5f95f65b957f971623757536bf9153cb41cd86fd74be07959f446fd3c4edaf967091b24586a9a9c
ssdeep: 384:K+nF9h6GgJZ+OfuOC7XiXNOCEVXFrTVtrp/dqCCc8yFq0RngreAWooxf32:RF6Bv7fuJ7XWn2Xc/t0RnGeVooxe
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T11C038D277CD24577C982C6B094F58F26B73F66F206925087CB48291A3D719F0EA3A387
sha3_384: 6e03c481e4b68aa18631d6fb496ff7108c30e88ed501f8ce9cc75509679d41349144aab596376cadf96a4b7546da6927
ep_bytes: 558bec6aff68e860400068e828400064
timestamp: 2011-02-03 15:14:16


Version Info:

0: [No Data]

Trojan.Agent.PMA also known as:

McAfeeGenericRXEV-VD!FFCFEF9CE509
MalwarebytesTrojan.Agent.PMA
Cybereasonmalicious.9f8e8d
VirITTrojan.Win32.Agent5.CTF
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent.WOO
CynetMalicious (score: 100)
NANO-AntivirusTrojan.Win32.Crypted.dyjkus
ViRobotTrojan.Win32.Agent.40960.MU
AvastWin32:Trojan-gen
F-SecureHeuristic.HEUR/AGEN.1240704
DrWebTrojan.Proxy.27883
ZillyaTrojan.Agent.Win32.673026
McAfee-GW-EditionGenericRXEV-VD!FFCFEF9CE509
FireEyeGeneric.mg.ffcfef9ce50956ec
SentinelOneStatic AI – Malicious PE
JiangminTrojan.Generic.ffbh
AviraHEUR/AGEN.1240704
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
SUPERAntiSpywareTrojan.Agent/Gen-Malagent
AhnLab-V3Trojan/Win.Skeeyah.R449324
VBA32suspected of Trojan.Downloader.gen
CylanceUnsafe
RisingTrojan.Generic@AI.87 (RDMK:cmRtazrBeUJX3rKVVHt9yY9o8cdA)
YandexTrojan.GenAsa!egeqEiBQeXU
FortinetW32/Agent.WOO!tr
BitDefenderThetaGen:NN.ZexaF.34638.cmX@aqQlu1h
AVGWin32:Trojan-gen
PandaTrj/Genetic.gen

How to remove Trojan.Agent.PMA?

Trojan.Agent.PMA removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment