Trojan

Trojan.Generic.31296485 removal

Malware Removal

The Trojan.Generic.31296485 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.31296485 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Dynamic (imported) function loading detected
  • A process created a hidden window
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Creates an autorun.inf file
  • Authenticode signature is invalid
  • Uses Windows utilities for basic functionality
  • Uses Windows utilities for basic functionality

How to determine Trojan.Generic.31296485?



File Info:

name: 21C231FD302C53E103B1.mlw
path: /opt/CAPEv2/storage/binaries/f7e3e6e7e6e5ebbb159f66be0ae945554fde3abbbe2a44471805b1a2cf832a25
crc32: 5B18ACD1
md5: 21c231fd302c53e103b1bc2be97d1487
sha1: 2522469ebfaff2ac9291596147071fe666c18b3f
sha256: f7e3e6e7e6e5ebbb159f66be0ae945554fde3abbbe2a44471805b1a2cf832a25
sha512: 1e848db9b36edcd285584ee8d5f19f07f979a21b7ca416287b5af143f26ddfd7d41c56e9e26fcd893bb2fdb2e9cdb8d378ab6742a5294ad608611817df1ecc46
ssdeep: 384:3IiV728hUQ7Y2P/cVEccDdye7kjlWLe7grPiA8jyrMPhTjanbBoZaJBJ5ZaNJawn:3RGuY2P0Vo6r7SiAwyrMRjbQBOnbcuyX
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F8B2C026E680899CC6BF013285EB7F1E5E80E7599500094BFACC743FBD06F84295D5FA
sha3_384: 533dfa3f4506de9b8e2c12518aa735ebc3a8cfdd37916b8d7e9985c49d42a65aa59184c9766155e5bc83e4122cf03def
ep_bytes: 60be15a040008dbeeb6fffff5789e58d
timestamp: 2009-02-07 06:33:08


Version Info:

0: [No Data]

Trojan.Generic.31296485 also known as:

MicroWorld-eScanTrojan.Generic.31296485
FireEyeTrojan.Generic.31296485
ALYacTrojan.Generic.31296485
TrendMicro-HouseCallTROJ_GEN.R002H06L321
BitDefenderTrojan.Generic.31296485
Ad-AwareTrojan.Generic.31296485
EmsisoftTrojan.Generic.31296485 (B)
McAfee-GW-EditionRDN/Generic Dropper
MaxSecureTrojan.Malware.300983.susgen
MAXmalware (ai score=88)
GridinsoftRansom.Win32.Sabsik.sa
GDataTrojan.Generic.31296485
AhnLab-V3Dropper/Win32.Xema.C165993
McAfeeRDN/Generic Dropper
FortinetW32/Dropper!tr

How to remove Trojan.Generic.31296485?

Trojan.Generic.31296485 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment