Trojan

Trojan-Dropper.Win32.Dapato.olxl (file analysis)

Malware Removal

The Trojan-Dropper.Win32.Dapato.olxl is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Dropper.Win32.Dapato.olxl virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid

How to determine Trojan-Dropper.Win32.Dapato.olxl?



File Info:

name: 9794C37530AB0B596C38.mlw
path: /opt/CAPEv2/storage/binaries/1218fd405b4739e7b91c051924862d3eeb9b319f978875f117a4b3cdb56e08a6
crc32: EB6F005B
md5: 9794c37530ab0b596c384a782365fcdb
sha1: 1a30db4d57a60e400c939afce92e672ce7ffa469
sha256: 1218fd405b4739e7b91c051924862d3eeb9b319f978875f117a4b3cdb56e08a6
sha512: 77d2d48ae2196c5257e246f7bedc23e49030d7ee77323d63a8062af8aa1e0b734067315a35eba29efa14cc84154391b3c817c35526c9451689420b8842dafd0f
ssdeep: 6144:yv5PZmOfr6dDonHnyG3tx1RSRg7/xYbl:yvdxnHnN3PSRuYbl
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BD844C007BD8CA17E7BF17B6A0B2160447B5E546E5A6DB4E6C8C19F91D13302AE123BF
sha3_384: 505760202c2558f47c0ccee0acf307ee1b68020251262b01a8a58a598108869a65cbc452e94a1af1ea735eef51ddeade
ep_bytes: ff256021460000000000000000003421
timestamp: 2016-09-12 17:10:17


Version Info:

Translation: 0x0000 0x04b0
CompanyName: Greenway Health
FileDescription: AuditIntergyDbBackupTask
FileVersion: 1.0.0.0
InternalName: AuditIntergyDbBackupTask.exe
LegalCopyright: Copyright © Greenway Health 2016
OriginalFilename: AuditIntergyDbBackupTask.exe
ProductName: AuditIntergyDbBackupTask
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Trojan-Dropper.Win32.Dapato.olxl also known as:

LionicTrojan.Win32.Dapato.b!c
Elasticmalicious (high confidence)
FireEyeGeneric.mg.9794c37530ab0b59
ZillyaDropper.Dapato.Win32.72215
AlibabaTrojanDropper:Win32/Dapato.4060b77c
APEXMalicious
KasperskyTrojan-Dropper.Win32.Dapato.olxl
NANO-AntivirusTrojan.Win32.Dapato.fbnjww
AvastWin32:Malware-gen
ComodoApplication.MSIL.Dotdo.AA@6l58or
SophosGeneric ML PUA (PUA)
IkarusTrojan-Dropper.Win32.Dapato
JiangminTrojanDropper.Dapato.vmm
AviraHEUR/AGEN.1127305
KingsoftWin32.Troj.Dapato.ol.(kcloud)
MicrosoftTrojan:Win32/Occamy.C12
CynetMalicious (score: 99)
AhnLab-V3Dropper/Win32.Dapato.R201759
TACHYONTrojan-Dropper/W32.DN-Dapato.396800
VBA32TScope.Trojan.MSIL
TencentMalware.Win32.Gencirc.114bacbf
SentinelOneStatic AI – Malicious PE
AVGWin32:Malware-gen
MaxSecureTrojan.Malware.300983.susgen

How to remove Trojan-Dropper.Win32.Dapato.olxl?

Trojan-Dropper.Win32.Dapato.olxl removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment