Should I remove “Trojan.Broskod”?

The Trojan.Broskod is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Broskod virus can do?

Dynamic (imported) function loading detected
Unconventionial language used in binary resources: Chinese (Simplified)
Authenticode signature is invalid

How to determine Trojan.Broskod?


File Info:
name: CAF1F4F049088ED1050B.mlw
path: /opt/CAPEv2/storage/binaries/58f74cce2d8f0be005b5e229646cecaf44f8ba7a44bcacaf580f67f3adc39dc6
crc32: 782652C5
md5: caf1f4f049088ed1050bbcab8ced5bb1
sha1: a37821e115fe0bc375cb4c24fbe25a8533383e92
sha256: 58f74cce2d8f0be005b5e229646cecaf44f8ba7a44bcacaf580f67f3adc39dc6
sha512: 15219e9df239d476a9bec3805bdec5600460fdd171e39c79197445ffedde7c04f10fafd555b7d3e5b05eab1b10e5406b1f2ff75a74bef7af76abfac1b5323cd1
ssdeep: 3072:q7lWcSzoFrJltLwmZGNcx+rAdvUXu3ER4+UUMVgwUUt2M4uxewcDVE9jEXb4+gTV:kOKtUEx6ovUXu3ER4+UUMVgwUUt2M4uL
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T126E37D167682C4DAC66340F1828B6B5F4F567E210E6270E757C87F0EAEF50B56A3B086
sha3_384: 908b442e1737581aad717c978993d4ac6f3a6ba76c898ea0a1220d0c9921602630684578637016694435df0ea2a0f04b
ep_bytes: 558bec6aff68b890400068506c400064
timestamp: 2014-09-14 07:20:22

Version Info:
0: [No Data]

Trojan.Broskod also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Variant.Doina.25190
FireEye	Generic.mg.caf1f4f049088ed1
CAT-QuickHeal	Trojan.Mauvaise.SL1
ALYac	Gen:Variant.Doina.25190
Cylance	Unsafe
Zillya	Backdoor.Finfish.Win32.18
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (W)
Alibaba	TrojanDownloader:Win32/DropperX.244e6cb1
K7GW	Trojan-Downloader ( 005412be1 )
K7AntiVirus	Trojan-Downloader ( 005412be1 )
Cyren	W32/Agent.DQN.gen!Eldorado
Symantec	Downloader
ESET-NOD32	Win32/TrojanDownloader.Agent.CWI
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Malware.Broskod-6804161-0
Kaspersky	HEUR:Trojan.Win32.Generic
BitDefender	Gen:Variant.Doina.25190
NANO-Antivirus	Trojan.Win32.Dwn.dwrwuh
Avast	Win32:DropperX-gen [Drp]
Tencent	Malware.Win32.Gencirc.10b0f069
Ad-Aware	Gen:Variant.Doina.25190
Emsisoft	Gen:Variant.Doina.25190 (B)
Comodo	TrojWare.Win32.TrojanDownloader.Broskod.SA@6vorj1
DrWeb	Trojan.DownLoader16.16954
TrendMicro	TROJ_GEN.R002C0OKR21
McAfee-GW-Edition	BehavesLike.Win32.Generic.ch
Sophos	Mal/Generic-S
GData	Win32.Trojan.PSE.13RMOHK
Jiangmin	Backdoor/Finfish.d
Avira	HEUR/AGEN.1121102
Antiy-AVL	Trojan/Generic.ASMalwS.E5F25C
Gridinsoft	Ransom.Win32.Sabsik.sa
Arcabit	Trojan.Doina.D6266
ViRobot	Trojan.Win32.Z.Finfish.147340
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Broskod.R190001
McAfee	GenericRXAN-DG!CAF1F4F04908
MAX	malware (ai score=84)
VBA32	Trojan.Broskod
Malwarebytes	Trojan.Downloader
TrendMicro-HouseCall	TROJ_GEN.R002C0OKR21
Rising	Malware.FakeXLS/ICON!1.9C3D (CLASSIC)
Yandex	Trojan.Broskod!EnkeBxbqRbM
SentinelOne	Static AI – Suspicious PE
eGambit	Unsafe.AI_Score_95%
Fortinet	W32/Agent.CWI!tr
AVG	Win32:DropperX-gen [Drp]
Cybereason	malicious.049088
MaxSecure	Trojan.Malware.300983.susgen

How to remove Trojan.Broskod?

Trojan.Broskod removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X