Trojan

About “Trojan-Banker.Win32.ClipBanker.ibw” infection

Malware Removal

The Trojan-Banker.Win32.ClipBanker.ibw is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Banker.Win32.ClipBanker.ibw virus can do?

  • Drops a binary and executes it
  • Executed a very long command line or script command which may be indicative of chained commands or obfuscation
  • Uses Windows utilities for basic functionality
  • Deletes its original binary from disk
  • Creates a hidden or system file
  • Attempts to modify proxy settings
  • Creates a copy of itself
  • Uses suspicious command line tools or Windows utilities

Related domains:

yip.su

How to determine Trojan-Banker.Win32.ClipBanker.ibw?



File Info:

crc32: 40E41F0C
md5: 247afa6400bc362739c4b9f9329b9280
name: srs.exe
sha1: 574d03a1d76c030b10e32797f1c01e4111680818
sha256: 217631bb16f1bbf934a23b524ec67b98ecc992993762ff8d6524009ee8b61fa4
sha512: 080f29c2f03b02b253cb46a7317b724f26c63131042bb502cb06c8a6c457bf727752c985a4fda558b63412df5ffba288b53d75c63defdd4c342e2e42919db26a
ssdeep: 24576:5AHnh+eWsN3skA4RV1Hom2KXMmHasrHUHWmkTt5:Ah+ZkldoPK8Yasr0+L
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

InternalName: bootcfg.exe
FileVersion: 4.8.8.6
CompanyName: DHCP Client Monitor Dll
Comments: 6lXhDE925BQB1sloisyh4mxq7mOtz6ciXmxS4nyehO4sTY3MzfpGPmcZGu2Zk6tZl5LDTEF
ProductVersion: 4.8.8.6
FileDescription: EFS Utility Library
OriginalFilename: bootcfg.exe
Translation: 0x0809 0x04b0

Trojan-Banker.Win32.ClipBanker.ibw also known as:

BkavW32.AIDetectVM.malware2
MicroWorld-eScanTrojan.GenericKD.32902957
CAT-QuickHealTrojan.ClipBanker
McAfeePacked-FXF!247AFA6400BC
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusTrojan ( 005451b51 )
BitDefenderTrojan.GenericKD.32902957
K7GWTrojan ( 005451b51 )
TrendMicroTROJ_GEN.R002C0PA420
APEXMalicious
AvastWin32:Malware-gen
GDataTrojan.GenericKD.32902957
KasperskyTrojan-Banker.Win32.ClipBanker.ibw
AlibabaTrojanBanker:Win32/ClipBanker.e3b3f5e0
NANO-AntivirusTrojan.Win32.Dwn.gryxne
AegisLabTrojan.Win32.ClipBanker.7!c
RisingTrojan.Obfus/Autoit!1.BD86 (CLASSIC)
Endgamemalicious (high confidence)
EmsisoftTrojan.GenericKD.32902957 (B)
ComodoMalware@#giv91eby91in
F-SecureHeuristic.HEUR/AGEN.1044801
DrWebTrojan.DownLoader32.41836
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Downloader.dh
Trapminemalicious.moderate.ml.score
FireEyeGeneric.mg.247afa6400bc3627
SophosMal/Generic-S
IkarusTrojan.Win32.Autoit
CyrenW32/Trojan.YRSU-4199
eGambitUnsafe.AI_Score_96%
AviraHEUR/AGEN.1044801
MAXmalware (ai score=82)
ArcabitTrojan.Generic.D1F60F2D
ZoneAlarmTrojan-Banker.Win32.ClipBanker.ibw
MicrosoftTrojan:Win32/Tiggre!rfn
VBA32TrojanBanker.ClipBanker
ALYacTrojan.GenericKD.32902957
Ad-AwareTrojan.GenericKD.32902957
MalwarebytesTrojan.ClipBanker.AutoIt.Generic
PandaTrj/CI.A
ESET-NOD32a variant of Win32/Packed.AutoIt.KY
TrendMicro-HouseCallTROJ_GEN.R002C0PA420
TencentWin32.Trojan-banker.Clipbanker.Hqby
YandexTrojan.AvsArher.bS970C
MaxSecureTrojan.Malware.300983.susgen
FortinetAutoIt/Packed.KY!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_80% (W)
Qihoo-360Win32/Trojan.895

How to remove Trojan-Banker.Win32.ClipBanker.ibw?

Trojan-Banker.Win32.ClipBanker.ibw removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment