Trojan

Trojan-Dropper.Win32.Daws.azaq (file analysis)

Malware Removal

The Trojan-Dropper.Win32.Daws.azaq is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-Dropper.Win32.Daws.azaq virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Deletes executed files from disk
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan-Dropper.Win32.Daws.azaq?



File Info:

name: E871AF4A398C4EA85BF6.mlw
path: /opt/CAPEv2/storage/binaries/0075d1efb96f27f3ea92b27854e1827bab43221cb847f119f1a32ce9e80f4d9c
crc32: 1D50C1C3
md5: e871af4a398c4ea85bf688cc26ca22d5
sha1: 56bfdcb784d4dcdbcb360c892215bfe21101c741
sha256: 0075d1efb96f27f3ea92b27854e1827bab43221cb847f119f1a32ce9e80f4d9c
sha512: 3ac5e7e494209e1bdd308baf6aafba6aa7d7a90b16d100a743c6a7144aaaefd586a191f3c7435427dd30cc5ef1be76088c00d7b9e99232dc4d4abe4a70e4cb11
ssdeep: 24576:Bd/Z9arRbSnCS/ZmExYaEsAGSTU9twGTdK8kUu1hLMBp:7CFbSCSIEiLsA+92udK8bKEp
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D22523EB3804D267D3752BB0AC015B4D6661FCA5EE5A452B61F4FB09EB3E2804217D3E
sha3_384: cba79f8d89a0bde485e789e913636e1420a3517cc7ca27ec386a411e3a0a802b57a718051aa4e0e5ff66d9e5eadf94aa
ep_bytes: 558bec83ec4456ff15a44040008bf08a
timestamp: 2010-07-07 09:14:45


Version Info:

CompanyName: LogMeIn, Inc.
FileDescription: LogMeIn Rescue
FileVersion: 6.2.373
InternalName: Rescue
LegalCopyright: Copyright © 2005-2010 LogMeIn, Inc. US patents pending.
OriginalFilename: LMIRescue.exe
ProductName: LogMeIn Rescue
ProductVersion: 6.2.373
Translation: 0x0409 0x04b0

Trojan-Dropper.Win32.Daws.azaq also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Daws.totq
SkyhighArtemis
CrowdStrikewin/malicious_confidence_100% (W)
KasperskyTrojan-Dropper.Win32.Daws.azaq
NANO-AntivirusTrojan.Win32.Daws.bbxgoa
RisingTrojan.Generic@AI.100 (RDML:8XGhzixu9Y42v92aGHMPgA)
DrWebTrojan.DownLoader5.1560
ZillyaDropper.Daws.Win32.3162
Trapminesuspicious.low.ml.score
JiangminTrojanDropper.Daws.ceg
XcitiumTrojWare.Win32.TrojanDropper.Daws.AWVZ@7pjjd8
ZoneAlarmTrojan-Dropper.Win32.Daws.azaq
McAfeeArtemis!E871AF4A398C
DeepInstinctMALICIOUS
VBA32TrojanDropper.Daws
Cylanceunsafe
TencentWin32.Trojan-Dropper.Daws.Kzfl
YandexTrojan.GenAsa!hx7DPWkISB4
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.4865974.susgen
FortinetW32/Daws.AZAQ!tr
Cybereasonmalicious.784d4d

How to remove Trojan-Dropper.Win32.Daws.azaq?

Trojan-Dropper.Win32.Daws.azaq removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment