Trojan

Trojan-Downloader.Win32.Adload.sxhf malicious file

Malware Removal

The Trojan-Downloader.Win32.Adload.sxhf is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Adload.sxhf virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan-Downloader.Win32.Adload.sxhf?



File Info:

crc32: F9571806
md5: 99983825ec51dc8cdfe152c20e28ee46
name: 99983825EC51DC8CDFE152C20E28EE46.mlw
sha1: a82f5211d05d75f48dee3b3f6978746b8fe465a9
sha256: 3650e0fd2ec0403764a15dab1d5050fe1fa3607cde5a87aeac83aa037e113ad9
sha512: cf33b944ce9028ff039448e10ff66922c98bcb46c12577caa0aa9c0043fdced7802368365cedcf1c277ee52e9b2b92c015c8d2740fd69fa2d81be99983b040e9
ssdeep: 98304:2iG3yxhyDFD3JZhRNfxYAs2MFyCqbTioWlI/1Yl:233y+DFTJZRxYAshNvvl
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright:                                                                                                     
FileVersion:                     
CompanyName:                                                             
Comments: This installation was built with Inno Setup.
ProductName: Facere                                                      
ProductVersion: 4.2.12.0            
FileDescription: Facere Setup                                                
Translation: 0x0000 0x04b0

Trojan-Downloader.Win32.Adload.sxhf also known as:

K7AntiVirusTrojan ( 00587f231 )
LionicTrojan.Win32.Generic.4!c
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
ALYacTrojan.GenericKD.37683826
SangforTrojan.Win32.Adload.ky
AlibabaAdWare:Win32/AdLoad.47115672
K7GWTrojan ( 00587f231 )
CyrenW32/Agent.CZD.gen!Eldorado
SymantecTrojan.Gen.MBT
ESET-NOD32multiple detections
AvastNSIS:Downloader-ADB [Trj]
KasperskyTrojan-Downloader.Win32.Adload.sxhf
BitDefenderTrojan.GenericKD.37683826
NANO-AntivirusTrojan.Win32.Adload.jcjlqh
ViRobotTrojan.Win32.Z.Sabsik.3718719
MicroWorld-eScanTrojan.GenericKD.37683826
TencentWin32.Trojan-downloader.Adload.Hvjc
Ad-AwareTrojan.GenericKD.37683826
SophosDownload Assistant (PUA)
TrendMicroTROJ_GEN.R002C0WJ221
McAfee-GW-EditionBehavesLike.Win32.Dropper.wc
FireEyeTrojan.GenericKD.37683826
EmsisoftTrojan.GenericKD.37683826 (B)
WebrootW32.Adware.Gen
AviraHEUR/AGEN.1144248
MicrosoftProgram:Win32/Wacapew.C!ml
ArcabitTrojan.Generic.D23F0272
GDataWin32.Backdoor.Bodelph.3R21UB
McAfeeArtemis!99983825EC51
MAXmalware (ai score=84)
MalwarebytesAdware.DownloadAssistant
TrendMicro-HouseCallTROJ_GEN.R002C0WJ221
IkarusTrojan-Dropper.Win32.Agent
FortinetW32/Agent.NCV!tr
AVGNSIS:Downloader-ADB [Trj]
Paloaltogeneric.ml

How to remove Trojan-Downloader.Win32.Adload.sxhf?

Trojan-Downloader.Win32.Adload.sxhf removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment