Should I remove "Trojan.AgentWDCR.SUF"?

The Trojan.AgentWDCR.SUF is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan.AgentWDCR.SUF virus can do?

Executable code extraction
Creates RWX memory
Unconventionial language used in binary resources: Serbian
Attempts to repeatedly call a single API many times in order to delay analysis time
Network activity detected but not expressed in API logs
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Trojan.AgentWDCR.SUF?


File Info:
crc32: E0AFEDCD
md5: e3083483121cd288264f8c5624fb2cd1
name: updatewin.exe
sha1: 144a1dd6714ff4b5675c32f428d1899e500140a5
sha256: 114ccacb7ca57c01f3540611fdf49e68416544da8d8077f5896434a4b71b01dd
sha512: b14314784600881699a1fb3f45beb4ebeba72fd5bbf3e81329d84ff3220b0c48b0ac1602fff2aa80feda7e403b4a9c7d102890d9b96a042f52fac85d411f46da
ssdeep: 6144:JMLLGApbfLsx8TsvD6OD61XXnXXfXXXWXXXXHXXXXBXXXXgXXXXX5XXXXiXXXX5:JMLdpMdhDyXXnXXfXXXWXXXXHXXXXBX
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright (C) 2018, huxonulow
InternalName: sutazaxidi.exe
FileVersion: 8.8.10.11
Translation: 0x0669 0x04b0

Trojan.AgentWDCR.SUF also known as:

DrWeb	Trojan.PWS.Siggen2.9186
MicroWorld-eScan	Trojan.AgentWDCR.SUF
FireEye	Generic.mg.e3083483121cd288
CAT-QuickHeal	Ransom.Stop.S7866402
Qihoo-360	HEUR/QVM10.2.98CB.Malware.Gen
ALYac	Trojan.Ransom.Stop
Cylance	Unsafe
Zillya	Trojan.Chapak.Win32.59443
Sangfor	Malware
K7AntiVirus	Trojan ( 00545a541 )
BitDefender	Trojan.AgentWDCR.SUF
K7GW	Trojan ( 00545a541 )
Cybereason	malicious.3121cd
Invincea	heuristic
BitDefenderTheta	Gen:NN.ZexaF.34084.ru0@a8xQ2BoG
F-Prot	W32/Kryptik.PT.gen!Eldorado
Symantec	Trojan.Gen.2
APEX	Malicious
Avast	Other:Malware-gen [Trj]
GData	Win32.Packed.Kryptik.JUUEI4
Kaspersky	HEUR:Trojan.Win32.Generic
Alibaba	Trojan:Win32/Kryptik.74eacd51
NANO-Antivirus	Trojan.Win32.Yakes.fmwlrp
ViRobot	Trojan.Win32.S.Agent.284160.DA
AegisLab	Trojan.Win32.Generic.4!c
Tencent	Win32.Trojan.Generic.Agkm
Ad-Aware	Trojan.AgentWDCR.SUF
Sophos	Mal/GandCrab-G
Comodo	Malware@#1osnkashzi01c
F-Secure	Trojan.TR/Crypt.Agent.lvzhe
VIPRE	Win32.Malware!Drop
TrendMicro	Trojan.Win32.MALREP.THOABAAI
McAfee-GW-Edition	BehavesLike.Win32.Generic.dh
Trapmine	malicious.high.ml.score
Emsisoft	Trojan.AgentWDCR.SUF (B)
Ikarus	Trojan-Ransom.Downloader.Stop
Cyren	W32/Kryptik.PT.gen!Eldorado
Jiangmin	Trojan.Generic.dceqw
Webroot	W32.Trojan.Gen
Avira	TR/Crypt.Agent.lvzhe
Antiy-AVL	Trojan[Ransom]/Win32.Chapak.a
Endgame	malicious (high confidence)
Arcabit	Trojan.AgentWDCR.SUF
SUPERAntiSpyware	Trojan.Agent/Gen-Kryptik
ZoneAlarm	HEUR:Trojan.Win32.Generic
Microsoft	Trojan:Win32/Fareit.VP!MTB
AhnLab-V3	Win-Trojan/Gandcrab10.Exp
McAfee	Generic.bto
MAX	malware (ai score=100)
VBA32	BScope.Trojan.Chapak
Malwarebytes	Trojan.MalPack.GS
Panda	Trj/WLT.E
Zoner	Trojan.Win32.80413
ESET-NOD32	Win32/Agent.AAFV
TrendMicro-HouseCall	Trojan.Win32.MALREP.THOABAAI
Rising	Trojan.Kryptik!1.B582 (KTSE)
Yandex	Trojan.Chapak!
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Generic.AAFV!tr
AVG	Other:Malware-gen [Trj]
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_100% (W)
MaxSecure	Ransomeware.GandCrypt.JZ

How to remove Trojan.AgentWDCR.SUF?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Should I remove “Trojan.AgentWDCR.SUF”?