Trojan

Should I remove “Trojan-Downloader.Win32.Adload.sqrt”?

Malware Removal

The Trojan-Downloader.Win32.Adload.sqrt is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Adload.sqrt virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

How to determine Trojan-Downloader.Win32.Adload.sqrt?



File Info:

crc32: 9AB3F8A7
md5: 34ef46e36a09991bb787f6eb0d05dc5f
name: 34EF46E36A09991BB787F6EB0D05DC5F.mlw
sha1: 7687b5cd4c0dfae2a4e9511267a217fbbd19c085
sha256: a65b91fa0b4fe906e045257b9d369a2511f1c494e3315cad88cc456391b6da53
sha512: cf512409234e38db2929335951fc7ae9ad6532fe28a4d55bbac682f8af67a5ca5ff5d13d3012b1421261ecad6d84e2d9854265cd9d509a15171456252f22d970
ssdeep: 98304:8SiZJSIQDX6o2T4V6A3HB7X81esPLSQ2i/CDnWDkP1e:Ys6t0VX3HpX1sP+ni/CDckte
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: Enim                                                        
ProductVersion: 10.4.20.12                                        
FileDescription: Enim Setup                                                  
OriginalFileName:                                                   
Translation: 0x0000 0x04b0

Trojan-Downloader.Win32.Adload.sqrt also known as:

K7AntiVirusTrojan ( 0057ef861 )
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
DrWebTrojan.Zadved.1694
CynetMalicious (score: 99)
CylanceUnsafe
SangforTrojan.Win32.Sabsik.TE
CrowdStrikewin/malicious_confidence_60% (D)
AlibabaAdWare:Win32/AdLoad.f4e83d7f
K7GWTrojan ( 0057ef861 )
CyrenW32/Agent.COU.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/Kryptik.HLPA
AvastWin32:AdwareX-gen [Adw]
KasperskyTrojan-Downloader.Win32.Adload.sqrt
TencentWin32.Trojan-downloader.Adload.Llrr
SophosTroj/Agent-BHKP
TrendMicroTROJ_GEN.R002C0RHQ21
McAfee-GW-EditionBehavesLike.Win32.Dropper.rc
AviraHEUR/AGEN.1142027
MicrosoftProgram:Win32/Wacapew.C!ml
GDataWin32.Trojan.BSE.W4BXSV
McAfeeArtemis!34EF46E36A09
MalwarebytesAdware.DownloadAssistant
PandaTrj/CI.A
TrendMicro-HouseCallTROJ_GEN.R002C0RHQ21
Rising[email protected] (RDML:m+b4t3wwcNmi+eAJeJeNaQ)
IkarusTrojan.Win32.Crypt
FortinetRiskware/Adload
AVGWin32:AdwareX-gen [Adw]
Paloaltogeneric.ml

How to remove Trojan-Downloader.Win32.Adload.sqrt?

Trojan-Downloader.Win32.Adload.sqrt removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment