Trojan

What is “Trojan.Generic.12311421”?

Malware Removal

The Trojan.Generic.12311421 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.12311421 virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Reads data out of its own binary image
  • A process created a hidden window
  • Executed a process and injected code into it, probably while unpacking
  • Attempts to delete volume shadow copies
  • A system process is generating network traffic likely as a result of process injection
  • Installs itself for autorun at Windows startup
  • Attempts to modify browser security settings
  • Creates a copy of itself
  • Harvests information related to installed mail clients
  • Uses suspicious command line tools or Windows utilities

How to determine Trojan.Generic.12311421?



File Info:

crc32: 0909E0D6
md5: dfc7d70311f39813820257b63ae36a60
name: DFC7D70311F39813820257B63AE36A60.mlw
sha1: 5cf4067f74af437103e2a77a0b421b3ad75874b1
sha256: f964fbdeb315e3400cb4a0c584fc8a18eadb6f109ba765c98eada59da4c8b604
sha512: 0132b96202b1046c99b260b5ff90dc6ceaf444893aba81e6aff28476f8efa86ea703dcfb1dacbeb33eed3922611405dab810af869139cd4ef3704f60a809e6bb
ssdeep: 6144:MFXZJ7fE94xhAp080KqKoePAWi3rHVFqTzjkuWpsggCBMs/glsUHVM6gRbBoew7t:sZJ7fJx7KqKoeriPfXp+Yvflk
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows


Version Info:

LegalCopyright: Copyright (C) 2004
InternalName: base
FileVersion: 1.0.1.15
CompanyName: 
PrivateBuild: 
LegalTrademarks: 
Comments: 
ProductName: Wireless Monitor
ProductDate: Sep 23 2004
SpecialBuild: 
ProductVersion: 1.0.1.15
FileDescription: WLAN Monitor MFC Application
OriginalFilename: base.EXE
Translation: 0x0409 0x04b0

Trojan.Generic.12311421 also known as:

BkavW32.AIDetect.malware2
K7AntiVirusTrojan ( 004b22751 )
Elasticmalicious (high confidence)
DrWebTrojan.Encoder.836
CynetMalicious (score: 100)
CAT-QuickHealWorm.Gamarue.WR5
McAfeeGeneric.vi
CylanceUnsafe
ZillyaTrojan.Rack.Win32.20
SangforRansom.Win32.Teerac.A
CrowdStrikewin/malicious_confidence_90% (W)
AlibabaRansom:Win32/Teerac.09acec49
K7GWTrojan ( 004b22751 )
Cybereasonmalicious.311f39
BaiduWin32.Trojan.Kryptik.mu
CyrenW32/Trojan.VUBG-0592
SymantecRansom.Cryptolocker
ESET-NOD32Win32/Filecoder.TorrentLocker.A
ZonerTrojan.Win32.30763
APEXMalicious
TotalDefenseWin32/Ransom.WGXTQE
AvastWin32:Malware-gen
KasperskyBackdoor.Win32.Androm.day
BitDefenderTrojan.Generic.12311421
NANO-AntivirusTrojan.Win32.Encoder.efgwuc
MicroWorld-eScanTrojan.Generic.12311421
TencentWin32.Trojan.Fakedoc.Auto
Ad-AwareTrojan.Generic.12311421
SophosMal/Generic-S + Mal/Generic-L
ComodoMalware@#1fbqg02hyvhub
BitDefenderThetaGen:NN.ZexaF.34628.Lq0@aeYrazei
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_FORUCON.BME
McAfee-GW-EditionGeneric.vi
FireEyeGeneric.mg.dfc7d70311f39813
EmsisoftTrojan.Generic.12311421 (B)
SentinelOneStatic AI – Suspicious PE
JiangminTrojan/Agent.hyao
WebrootW32.Infostealer.Zeus
AviraTR/Teerac.A.11
eGambitGeneric.Trojan
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftRansom:Win32/Teerac.A
ArcabitTrojan.Generic.DBBDB7D
AegisLabTrojan.Win32.Androm.4!c
ZoneAlarmBackdoor.Win32.Androm.day
GDataWin32.Trojan.Agent.LEI7LM
TACHYONRansom/W32.Rack.606208
AhnLab-V3Trojan/Win32.ZBot.R131772
VBA32Hoax.Rack
MAXmalware (ai score=100)
MalwarebytesMalware.AI.2948887370
PandaTrj/WLT.B
TrendMicro-HouseCallTROJ_FORUCON.BME
RisingBackdoor.Win32.Androm.nd (CLOUD)
YandexTrojan.GenAsa!erU+3HBG8p8
IkarusTrojan.Win32.Filecoder
FortinetW32/Filecoder.DI!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml
Qihoo-360Win32/Ransom.TorrentLocker.HwoCw4cA

How to remove Trojan.Generic.12311421?

Trojan.Generic.12311421 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment