Trojan

Trojan-Downloader.Win32.Adload.ssft information

Malware Removal

The Trojan-Downloader.Win32.Adload.ssft is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Adload.ssft virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Possible date expiration check, exits too soon after checking local time
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

How to determine Trojan-Downloader.Win32.Adload.ssft?



File Info:

crc32: 6771561E
md5: 4b8405f636efdedefd83299430c0a717
name: 4B8405F636EFDEDEFD83299430C0A717.mlw
sha1: 4da438d3c694e8318bc236d516fee4db60cfc446
sha256: a86c103fa20935e4ca0a8acdc26ab4847d07c9578272e86ed0a4abc8c387024d
sha512: a6acfe45514092fb04627c52903fd95cff26f5ef736d9307b432cb8fa31411fff2f90b9a2fb83f3860a93b99617ee2f3b2cf8850dfd08bfb4ef902d97e4a11ab
ssdeep: 98304:XnkQBf6F9YGuu4+KWUnTtLyjqzZY5OkZEodl:xBytuVXtn8jqzZhGdl
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: Pariatur                                                    
ProductVersion: 6.0.19.12           
FileDescription: Pariatur Setup                                              
Translation: 0x0000 0x04b0

Trojan-Downloader.Win32.Adload.ssft also known as:

K7AntiVirusRiskware ( 0040eff71 )
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.37831847
CylanceUnsafe
SangforRiskware.Win32.Agent.ky
AlibabaAdWare:Win32/AdLoad.374f0840
K7GWRiskware ( 0040eff71 )
CyrenW32/Agent.CMX.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32multiple detections
AvastNSIS:Downloader-ADB [Trj]
KasperskyTrojan-Downloader.Win32.Adload.ssft
BitDefenderTrojan.GenericKD.37831847
MicroWorld-eScanTrojan.GenericKD.37831847
TencentWin32.Trojan-downloader.Adload.Pezs
Ad-AwareTrojan.GenericKD.37831847
SophosDownload Assistant (PUA)
McAfee-GW-EditionBehavesLike.Win32.BadFile.wc
FireEyeTrojan.GenericKD.37831847
EmsisoftTrojan.GenericKD.37831847 (B)
AviraHEUR/AGEN.1144248
MicrosoftProgram:Win32/Wacapew.C!ml
GDataWin32.Backdoor.Bodelph.KNJVP0
McAfeeArtemis!4B8405F636EF
MAXmalware (ai score=82)
VBA32Trojan.Sabsik.FL
MalwarebytesAdware.DownloadAssistant
TrendMicro-HouseCallTROJ_GEN.R002H0CIG21
IkarusTrojan-Dropper.Win32.Agent
FortinetRiskware/Adload
AVGNSIS:Downloader-ADB [Trj]
Paloaltogeneric.ml

How to remove Trojan-Downloader.Win32.Adload.ssft?

Trojan-Downloader.Win32.Adload.ssft removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment