Trojan

Trojan.Generic.7305291 (B) removal

Malware Removal

The Trojan.Generic.7305291 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.7305291 (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Performs HTTP requests potentially not found in PCAP.
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Attempts to modify proxy settings
  • Deletes executed files from disk
  • Touches a file containing cookies, possibly for information gathering
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Generic.7305291 (B)?



File Info:

name: 39BC299331A98918225A.mlw
path: /opt/CAPEv2/storage/binaries/9d1f0b7647fc6e04e6678c9c1e0279788c3e713ba5e571ed436facb8fc6002cd
crc32: FE8D9334
md5: 39bc299331a98918225ae238f9ff55d3
sha1: c31e15750d5e75b1e72b4336bdae96247a394e1d
sha256: 9d1f0b7647fc6e04e6678c9c1e0279788c3e713ba5e571ed436facb8fc6002cd
sha512: 9aadea4a7d6f98e0c2de21aaeb55f21ab8646d13024f6e8e6fa7132ee5efaa367a187e9eb1afe8cfcccbe395c77bc6d405276b00f167e75d2a9d9e69d97cbb72
ssdeep: 98304:edHk5nFbrrMqgFBKlerxKRxBI2HuKyzHgDEsgLuCe5/an2WiXCwbIWJGPVb1:iH6FdgTKMr0RY2agDE5I/33bIWMJ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1EF6633EA08113D39CBB24437DEB504162B1F377460753C9973AE38A7AB4DE56C8A1A1F
sha3_384: 54d7df6e554080b048ef9e38ac9a6d6bcaff92ecbaf65beac6222f3237c006f8d504b054a8d7c8be909a9b9be30691a9
ep_bytes: 558bec83c4cc53565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup: http://www.innosetup.com
CompanyName: RSTech                                                      
FileDescription: Daraoke Setup                                               
FileVersion:                     
LegalCopyright:                                                                                                     
Translation: 0x0409 0x04e4

Trojan.Generic.7305291 (B) also known as:

BkavW32.Common.3124B09A
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanTrojan.Generic.7305291
FireEyeTrojan.Generic.7305291
ALYacTrojan.Generic.7305291
SangforTrojan.Win32.Agent.Vjb5
BitDefenderTrojan.Generic.7305291
ArcabitTrojan.Generic.D6F784B
KasperskyUDS:DangerousObject.Multi.Generic
VIPRETrojan.Generic.7305291
McAfee-GW-EditionBehavesLike.Win32.ObfuscatedPoly.vc
EmsisoftTrojan.Generic.7305291 (B)
ZoneAlarmUDS:DangerousObject.Multi.Generic
GDataTrojan.Generic.7305291
McAfeeArtemis!39BC299331A9
DeepInstinctMALICIOUS
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H07ID23
RisingTrojan.Win32.Generic.137A710C (C64:YzY0Op4cIELstgGt)
MaxSecureTrojan.Malware.207628190.susgen
FortinetW32/AntiAV.OVD!tr
AVGWin32:Malware-gen
AvastWin32:Malware-gen

How to remove Trojan.Generic.7305291 (B)?

Trojan.Generic.7305291 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment