Trojan

Trojan.Dropper.VHT removal instruction

Malware Removal

The Trojan.Dropper.VHT is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Dropper.VHT virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Catalan
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • CAPE detected the Ramnit malware family

How to determine Trojan.Dropper.VHT?



File Info:

name: B591DEA96033B11AC7C0.mlw
path: /opt/CAPEv2/storage/binaries/2c74df97c1c83402f9f5b90968f6d73e1848260475c7a803b28d3f2e24dfb705
crc32: D5B20F71
md5: b591dea96033b11ac7c0c63921df7c12
sha1: 67576072116525e0d1d41c26a2e39618bb8146be
sha256: 2c74df97c1c83402f9f5b90968f6d73e1848260475c7a803b28d3f2e24dfb705
sha512: a6ce5f29936870631c6e886e4f98f57c23cf36fd270a3671ae639ce303adc35432e9bd60ceff083a4e3a38e3f8c0b2d24662cdb22a8efa75fa6927e865623d04
ssdeep: 768:U06R0UEgnKqGR7//GPc0LOBhvBrHks3IiyhDYQbGmxlNaM+WGa1wuxnzgOYw9ICW:KR0In3Pc0LCH9MtbvabUDzJYWu3B
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T13D04D045B930B6DAF7A996358444FF805F3CBD2A0DF3C5B6345C22CEAA39C89864472D
sha3_384: ee219469be96ac64dd277d1660c9e6486939319304081797f9b859f36402ea53422b297e18860c90d8c988de167d23a7
ep_bytes: 558bec83ec2c8165ec000000008d5b56
timestamp: 2003-12-07 05:35:58


Version Info:

CompanyName: Macromedia, Inc.
FileDescription: Macromedia Flash Player 7.0  r19
FileVersion: 7,0,19,0
InternalName: Macromedia Flash Player 7.0
LegalCopyright: Copyright © 1996-2003 Macromedia, Inc.
LegalTrademarks: Macromedia Flash Player
OriginalFilename: SAFlashPlayer.exe
ProductName: Shockwave Flash
ProductVersion: 7,0,19,0
Translation: 0x0409 0x04b0

Trojan.Dropper.VHT also known as:

BkavW32.FamVT.DisbukCI.Trojan
Elasticmalicious (high confidence)
DrWebTrojan.Siggen2.9448
MicroWorld-eScanTrojan.Dropper.VHT
FireEyeGeneric.mg.b591dea96033b11a
CAT-QuickHealW32.Ramnit.DR
McAfeePWS-Zbot.gen.di
CylanceUnsafe
VIPRETrojan.Dropper.VHT
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 001f82c71 )
K7GWTrojan ( 001f82c71 )
CrowdStrikewin/malicious_confidence_100% (W)
BitDefenderThetaGen:NN.ZexaF.34592.kq3@aCLk5RaH
VirITTrojan.Win32.Generic.SUG
CyrenW32/Ramnit.F.gen!Eldorado
SymantecPacked.Protexor!gen1
ESET-NOD32Win32/Ramnit.A
APEXMalicious
TrendMicro-HouseCallTROJ_DROPPR.SMAL
ClamAVWin.Virus.Virut-6804273-0
KasperskyPacked.Win32.Krap.ar
BitDefenderTrojan.Dropper.VHT
NANO-AntivirusTrojan.Win32.Ramnit.bbgdmp
ViRobotWorm.Win32.A.Net-Koobface.126464
AvastWin32:Crypto-V [Trj]
TencentTrojan.Win32.Koobface.udb
Ad-AwareTrojan.Dropper.VHT
EmsisoftTrojan.Dropper.VHT (B)
ComodoTrojWare.Win32.Kryptik.ILZ@39m3x2
BaiduWin32.Trojan.Nimnul.a
ZillyaTrojan.Kryptik.Win32.67537
TrendMicroTROJ_DROPPR.SMAL
McAfee-GW-EditionBehavesLike.Win32.Dropper.cz
Trapminemalicious.high.ml.score
SophosML/PE-A + Mal/Ramnit-ZZ
SentinelOneStatic AI – Malicious PE
GDataTrojan.Dropper.VHT
JiangminPacked.Krap.dljx
WebrootW32.Trojan.Krap.Gen
GoogleDetected
AviraTR/Crypt.XPACK.Gen
MAXmalware (ai score=86)
Antiy-AVLTrojan/Generic.ASMalwS.4
SUPERAntiSpywareTrojan.Agent/Gen-Ramnit
ZoneAlarmPacked.Win32.Krap.ar
MicrosoftTrojan:Win32/Ramnit
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Krap.R20076
VBA32Trojan.Inject
ALYacTrojan.Dropper.VHT
MalwarebytesNimnul.Virus.FileInfector.DDS
RisingWin32.Ramnit.m (CLASSIC)
YandexTrojan.GenAsa!MLownxgq9A8
IkarusVirus.Win32.Ramnit
FortinetW32/Kryptik.LW!tr
AVGWin32:Crypto-V [Trj]
Cybereasonmalicious.96033b
PandaTrj/Pck_Pretorx.A

How to remove Trojan.Dropper.VHT?

Trojan.Dropper.VHT removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment