Trojan

Trojan-Downloader.Win32.Banload.abbhb removal

Malware Removal

The Trojan-Downloader.Win32.Banload.abbhb is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Downloader.Win32.Banload.abbhb virus can do?

  • At least one process apparently crashed during execution
  • Unconventionial language used in binary resources: Portuguese (Brazilian)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Network activity detected but not expressed in API logs

How to determine Trojan-Downloader.Win32.Banload.abbhb?



File Info:

name: 375FF403BFF68E28D2D5.mlw
path: /opt/CAPEv2/storage/binaries/c2e4dacd45efceaedc29c464ef758ff32c59f6172039f73d042ba726fcbd28c0
crc32: FB64D9D8
md5: 375ff403bff68e28d2d58f843fdf900f
sha1: 031742ce765938f90a3b1d88dc7dd5d508728ba0
sha256: c2e4dacd45efceaedc29c464ef758ff32c59f6172039f73d042ba726fcbd28c0
sha512: add0046bd70e763d4e4541d662665f9befa638d79937843542c63485e539a617d157c5108073c0623e2c169340e20ad1ca3822f73e43934d5227b90c1cddde85
ssdeep: 49152:GjLzFxCgkjH2jE59EXwKvUruqy9b/mrKHarA9m25ujI:G3zbCgI2o59EgRm9b/mrK6rA9l5ujI
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T140D58E32B6D18437D0732A3C9D6BA75D99297D202E38D84B3BE42E8C1F396C179192D7
sha3_384: 6399a2d30508b8e40db1c6561bce5f64f97f83d46790d3367dab6e467e764d0ec29d4c5b85e7898ac32b561486ac05f8
ep_bytes: 66a3625b5d00a1685b5d00e8ee64f9ff
timestamp: 2010-08-01 10:32:37


Version Info:

CompanyName: rejetto
FileDescription: 
FileVersion: 2.3.0.0
InternalName: HFS
LegalCopyright: Copyright (C) 2002-2010  Massimo Melina (www.rejetto.com)
LegalTrademarks: 
OriginalFilename: hfs.exe
ProductName: Http File Server
ProductVersion: 2.3
Comments: 
Translation: 0x0410 0x04e4

Trojan-Downloader.Win32.Banload.abbhb also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Banload.a!c
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.281909
FireEyeGeneric.mg.375ff403bff68e28
ALYacGen:Variant.Zusy.281909
CylanceUnsafe
ZillyaDownloader.Banload.Win32.99046
SangforTrojan.Win32.Skeeyah.A
K7AntiVirusTrojan ( 7000000f1 )
AlibabaTrojanDownloader:Win32/Banload.e207512b
K7GWTrojan ( 7000000f1 )
CrowdStrikewin/malicious_confidence_90% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/TrojanDownloader.Banload.YEN
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Downloader.Banload-9861199-0
KasperskyTrojan-Downloader.Win32.Banload.abbhb
BitDefenderGen:Variant.Zusy.281909
NANO-AntivirusTrojan.Win32.Banload.fafjdt
AvastWin32:Malware-gen
TencentWin32.Trojan-downloader.Banload.Ljkp
Ad-AwareGen:Variant.Zusy.281909
SophosMal/Generic-S
ComodoMalware@#4ly2vv13hmmh
DrWebTrojan.DownLoader26.35522
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0DH321
McAfee-GW-EditionBehavesLike.Win32.Generic.vh
EmsisoftGen:Variant.Zusy.281909 (B)
IkarusTrojan-Downloader.Win32.Banload
GDataGen:Variant.Zusy.281909
JiangminAdWare.Generic.mqmx
AviraHEUR/AGEN.1129030
MAXmalware (ai score=100)
Antiy-AVLTrojan/Generic.ASMalwS.2545D1F
MicrosoftTrojan:Win32/Skeeyah.A!rfn
CynetMalicious (score: 100)
McAfeeGenericRXEE-UE!375FF403BFF6
VBA32BScope.Backdoor.Pigeon
MalwarebytesTrojan.Downloader
TrendMicro-HouseCallTROJ_GEN.R002C0DH321
RisingTrojan.Generic@ML.95 (RDML:fmxzWGtNg1orlMNW22OwOQ)
YandexTrojan.GenAsa!vNVaQ+Vbg2M
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_100%
FortinetW32/Banload.YEN!tr
BitDefenderThetaGen:NN.ZelphiF.34294.TI0@aSyJsbaG
AVGWin32:Malware-gen
PandaTrj/CI.A
MaxSecureTrojan.Malware.300983.susgen

How to remove Trojan-Downloader.Win32.Banload.abbhb?

Trojan-Downloader.Win32.Banload.abbhb removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment