Trojan

Should I remove “Trojan-Downloader.Win32.Adload.topu”?

Malware Removal

The Trojan-Downloader.Win32.Adload.topu is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Adload.topu virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Trojan-Downloader.Win32.Adload.topu?



File Info:

name: 9F770B4FE3B762749398.mlw
path: /opt/CAPEv2/storage/binaries/7b38eb246cf5cb9c2bc71ed25daa150b4ce8d2860f1b79a06735076813d176f2
crc32: 8F575309
md5: 9f770b4fe3b7627493982ab0396b7bf8
sha1: 53a28f5f290d73430a6c8adf0a30485425c50ce1
sha256: 7b38eb246cf5cb9c2bc71ed25daa150b4ce8d2860f1b79a06735076813d176f2
sha512: 9649515d4aa5c86497ca272de11aa1647bec0c1b493aa3d8fbd76cfa4e6cef8f4736fe9888894e6b3c60acdad1e64ecee8b126ec2873720006beebf1c572502f
ssdeep: 98304:aVaYaqK0o9yt4BZwXia26Sp2xaOjzfZOPkT7y8iSJKVsmxgQtci:3YaqFt4BZKDOp6IPk/BiAAsrQqi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16646232271E3707FCD627671E4C9E1FD87D60BA33824897379E46B9B363A216082BD54
sha3_384: 28be99a9cba2310356a6223b06f174ab510d891894b8fec7f87df66305841f5699372ef8664a6add19c36db057600cb0
ep_bytes: 558bec83c4cc53565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName:                                                             
FileDescription: Repellendus Setup                                           
FileVersion:                     
LegalCopyright:                                                                                                     
Translation: 0x0409 0x04e4

Trojan-Downloader.Win32.Adload.topu also known as:

McAfeeArtemis!9F770B4FE3B7
CylanceUnsafe
AlibabaAdWare:Win32/AdLoad.985daedd
K7GWTrojan ( 005722fe1 )
K7AntiVirusTrojan ( 005722fe1 )
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
APEXMalicious
Paloaltogeneric.ml
KasperskyTrojan-Downloader.Win32.Adload.topu
AvastWin32:DropperX-gen [Drp]
DrWebTrojan.DownLoader44.14879
McAfee-GW-EditionBehavesLike.Win32.AdwareFileTour.tc
IkarusTrojan-Dropper.Win32.Agent
GDataWin32.Backdoor.Bodelph.F6UPMP
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
MalwarebytesAdware.DownloadAssistant
FortinetMalicious_Behavior.SB
AVGWin32:DropperX-gen [Drp]

How to remove Trojan-Downloader.Win32.Adload.topu?

Trojan-Downloader.Win32.Adload.topu removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment