Trojan

How to remove “Trojan.AgentRI.S24828396”?

Malware Removal

The Trojan.AgentRI.S24828396 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.AgentRI.S24828396 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid

How to determine Trojan.AgentRI.S24828396?



File Info:

name: D2B2539849DB1E851B22.mlw
path: /opt/CAPEv2/storage/binaries/d5b92cc2c9169edf70a342b75e960fb86486025053f6b02063de25e7a5528005
crc32: F0EA324B
md5: d2b2539849db1e851b22ab5c8041a36e
sha1: 85bfedebe4a32702b92446f70bc57356478ac256
sha256: d5b92cc2c9169edf70a342b75e960fb86486025053f6b02063de25e7a5528005
sha512: bd76572ebd9783c47c62251568c6022297bec5393c06c66f93b5125a01851ec4ab68214411f8efcc0b6bd0cb99c276b7b5b8db14479adfa129764865984c32e3
ssdeep: 6144:+cG5ukSEgwh/e7+RjGxvlSpjbpsgl2AOUF0K53ZDh:b8dv1h27+4xNoGuFBvDh
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T10CD4DB4169D1E025ECA87E35C2718EBC7D4F2C394922AA4B06C8F16E4C3E65396FE537
sha3_384: 00e0be1214a6ca94e6eda5d72130afddc94638b06fbca54ee5a341a7ea721e378db8c16670abdad61bd26e43465ef8e9
ep_bytes: e88a070000e974feffff8b4df464890d
timestamp: 2021-11-10 23:59:44


Version Info:

FileVersion: 1.0.0.4
LegalCopyright: 2020-2021 All rights reserved
Translation: 0x0409 0x04b0

Trojan.AgentRI.S24828396 also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Razy.985448
FireEyeGeneric.mg.d2b2539849db1e85
CAT-QuickHealTrojan.AgentRI.S24828396
McAfeeGenericRXQS-JP!D2B2539849DB
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Agent_AGen.HK
APEXMalicious
KasperskyHEUR:Trojan.Win32.Agent.gen
BitDefenderGen:Variant.Razy.985448
AvastWin32:PWSX-gen [Trj]
TencentMalware.Win32.Gencirc.10cf87a3
Ad-AwareGen:Variant.Razy.985448
SophosMal/Generic-S
McAfee-GW-EditionBehavesLike.Win32.Generic.hm
EmsisoftGen:Variant.Razy.985448 (B)
GDataWin32.Trojan.PSE.1IO2X0P
JiangminTrojan.Agent.drit
AviraHEUR/AGEN.1144971
MAXmalware (ai score=86)
Antiy-AVLTrojan/Generic.ASMalwS.34D3AF9
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win.Generic.R450898
VBA32Trojan.Agent
ALYacGen:Variant.Razy.985448
MalwarebytesTrojan.Agent
YandexTrojan.Agent!6RGwq+tt3gk
IkarusTrojan.Win32.Agent
FortinetW32/Agent_AGen.HK!tr
BitDefenderThetaGen:NN.ZexaF.34062.Lu0@aOKXFVbi
AVGWin32:PWSX-gen [Trj]
PandaTrj/Genetic.gen

How to remove Trojan.AgentRI.S24828396?

Trojan.AgentRI.S24828396 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment