Trojan

Trojan.Generic.21171378 malicious file

Malware Removal

The Trojan.Generic.21171378 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.21171378 virus can do?

  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Generic.21171378?



File Info:

name: 38BEB0A5C2514017A82D.mlw
path: /opt/CAPEv2/storage/binaries/4688649bb94801b1f89c67eef06628ce9b89d414378e208d093eb926725db6c3
crc32: 53C9B5D6
md5: 38beb0a5c2514017a82d1bdb41fa02d0
sha1: 7cbc2a09a866cf0fb06511dc7b7e1c11e0eefb5b
sha256: 4688649bb94801b1f89c67eef06628ce9b89d414378e208d093eb926725db6c3
sha512: f350e3c288de50cd131c8dcc73280091e0ac00bd8eee91852f3a4a538416f9a12693606221acfa10144a7f45dadcc6dd7ee92a1479f0f06adf5044ed74f8b331
ssdeep: 6144:2A6tDougMQzmxWKTBRwNRLGU+EHZCUau8Lt+t:2zp1T3a9VZBaJt+t
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19464AF25D78048F6D1610B7ABCD9F1D4F82ABD302B25B81B75F83E083E7A6B272151D6
sha3_384: f3052d43f297d1b967ff55f7d63a7c89eecb279612c2550459e284a415fef18a8437ac021c43ffbf2c6db0a38e68ba11
ep_bytes: 558bec83c4f0b81c8b4200e8d0c0fdff
timestamp: 2016-12-14 09:07:00


Version Info:

CompanyName: TweakBit
FileDescription: Driver Updater Setup
FileVersion: 1.8.0.0
InternalName: driver-updater
LegalCopyright: Copyright © 2008-2016 Auslogics Labs Pty Ltd
LegalTrademarks: Copyright © 2008-2016 Auslogics Labs Pty Ltd
OriginalFilename: driver_updater_stub_installer.exe
ProductName: Driver Updater
ProductVersion: 1.x
Comments: Part of TweakBit Driver Updater
Translation: 0x0409 0x04e4

Trojan.Generic.21171378 also known as:

BkavW32.Common.D8C7C072
LionicHacktool.Win32.DeceptPCClean.3!c
DrWebProgram.Unwanted.1336
MicroWorld-eScanTrojan.Generic.21171378
FireEyeTrojan.Generic.21171378
ALYacTrojan.Generic.21171378
Cylanceunsafe
ZillyaDownloader.Snojan.Win32.203
SangforPUP.Win32.Auslogics.V050
K7AntiVirusTrojan ( 005329171 )
K7GWTrojan ( 005329171 )
CrowdStrikewin/grayware_confidence_100% (W)
SymantecPUA.TweakbitDrvUpd
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Auslogics.A potentially unwanted
CynetMalicious (score: 100)
KasperskyHEUR:Hoax.Win32.DeceptPCClean.gen
BitDefenderTrojan.Generic.21171378
AvastWin32:SilentInstaller-A [PUP]
SophosGeneric Reputation PUA (PUA)
VIPRETrojan.Generic.21171378
TrendMicroTROJ_GEN.R002C0OGM23
McAfee-GW-EditionArtemis!Trojan
EmsisoftApplication.InstallDrive (A)
SentinelOneStatic AI – Suspicious PE
GDataWin32.Application.Auslogics.C
JiangminDownloader.Snojan.ae
MAXmalware (ai score=85)
Antiy-AVLGrayWare/Win32.Auslogics.a
XcitiumApplication.Win32.Auslogics.AC@8061pi
ArcabitTrojan.Generic.D1430CB2
ViRobotAdware.Snojan.328704
ZoneAlarmHEUR:Hoax.Win32.DeceptPCClean.gen
MicrosoftPUA:Win32/Auslogics
AhnLab-V3PUP/RL.Helper.R252630
McAfeeArtemis!38BEB0A5C251
VBA32BScope.Downloader.DriverUpd
MalwarebytesPUP.Optional.TweakBit.DDS
TrendMicro-HouseCallTROJ_GEN.R002C0OGM23
YandexRiskware.Agent!SMwDMV5ZZP8
MaxSecureTrojan.Malware.11514511.susgen
FortinetRiskware/Auslogics
AVGWin32:SilentInstaller-A [PUP]
Cybereasonmalicious.5c2514
DeepInstinctMALICIOUS

How to remove Trojan.Generic.21171378?

Trojan.Generic.21171378 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment