What is “Trojan.Generic.23225139”?

Malware Removal

The Trojan.Generic.23225139 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan.Generic.23225139 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • The binary likely contains encrypted or compressed data.
  • Sniffs keystrokes
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz
vivivi.myftp.org

How to determine Trojan.Generic.23225139?


File Info:

crc32: A4A152D0
md5: 055a1db4e0a190804b0ff4cc3844573f
name: 055A1DB4E0A190804B0FF4CC3844573F.mlw
sha1: 64a0f6b42b4af8ac9c67323505fe7abe83792d80
sha256: 9c5f0f333b0d6d838482694dc6f37b5a0519e3a1011b1c434154c14cba8707a4
sha512: 1f165f562fc5b8442510566b80df8f31f2d152e8b121c865c30a4be212aa90f1ebb985adae40b6be40fa6864cc7121abc44f35310b948f02139295a97beea360
ssdeep: 6144:4qi2F8NXC796TB9vj48VP40NzGCVsSanzbJ2+y1I/:4UeVQkTrvj4VkzPmtyu/
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9 Clientcsrs2018
Assembly Version: 2.3.2.1
InternalName: Clientcsrs.exe
FileVersion: 3.5.1.6
CompanyName: almojahid
Comments: entcsrsalmojahid
ProductName: Clientcsrs
ProductVersion: 3.5.1.6
FileDescription: Clientcsrs
OriginalFilename: Clientcsrs.exe

Trojan.Generic.23225139 also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
DrWebBackDoor.Bladabindi.13678
CynetMalicious (score: 100)
ALYacTrojan.Generic.23225139
CylanceUnsafe
ZillyaDropper.Crypt.Win32.510
AlibabaTrojan:MSIL/Ransomware.832a4723
Cybereasonmalicious.4e0a19
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.SRWTYV
APEXMalicious
AvastWin32:Malware-gen
ClamAVWin.Ransomware.Bladabindi-6841455-0
KasperskyTrojan.MSIL.Crypt.gxzj
BitDefenderTrojan.Generic.23225139
NANO-AntivirusTrojan.Win32.Crypt.fksnmg
MicroWorld-eScanTrojan.Generic.23225139
TencentMsil.Trojan.Crypt.Duw
Ad-AwareTrojan.Generic.23225139
SophosMal/Generic-S
BitDefenderThetaGen:NN.ZexaF.34688.qq0@a8LVHep
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.VBObfus.dc
FireEyeGeneric.mg.055a1db4e0a19080
EmsisoftTrojan.Generic.23225139 (B)
SentinelOneStatic AI – Suspicious PE
AviraTR/Dropper.Gen
MicrosoftBackdoor:MSIL/Bladabindi
AegisLabTrojan.Win32.Generic.lBK8
GDataTrojan.Generic.23225139
AhnLab-V3Trojan/Win32.Generic.C2825701
Acronissuspicious
McAfeeGenericR-OCZ!055A1DB4E0A1
MAXmalware (ai score=86)
VBA32Trojan.MSIL.Crypt
MalwarebytesBackdoor.Bladabindi
RisingBackdoor.Bladabindi!8.B1F (CLOUD)
YandexTrojan.Crypt!sGp4AKjhm4M
IkarusTrojan-Crypt.Xpack
FortinetW32/Crypt.GXZJ!tr
AVGWin32:Malware-gen
Paloaltogeneric.ml

How to remove Trojan.Generic.23225139?

Trojan.Generic.23225139 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment