Trojan

Trojan.Generic.KDV.917621 removal

Malware Removal

The Trojan.Generic.KDV.917621 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Generic.KDV.917621 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • CAPE detected the Fareit malware family
  • Harvests cookies for information gathering
  • Harvests credentials from local FTP client softwares
  • Harvests information related to installed mail clients

How to determine Trojan.Generic.KDV.917621?



File Info:

name: BAC6B8BFB5008E5D9AF6.mlw
path: /opt/CAPEv2/storage/binaries/89a7bf6d88720fcfd1abe818d4169503f68b88227b68cfae3b2bcf63f08f8916
crc32: 7B65F69B
md5: bac6b8bfb5008e5d9af61a8a004db53d
sha1: 9dfcedc407931c398da7c1754a3c679adfa8752c
sha256: 89a7bf6d88720fcfd1abe818d4169503f68b88227b68cfae3b2bcf63f08f8916
sha512: 35d0bded259892fb556ffa6dc78729b1f474b9cd937bc5557ce7e3cd289993803f8e8ab89fb6a3a8ba8b36abab1e10a27445d665c0afd73eabafbd5c82beec09
ssdeep: 1536:cm2/5vnSYS109A9mQnykGDHA/oYjyivOetM9dB/0ZsLyFVqRl0YxB2t6fYXDYLOV:a/5vnSYxXUykGThsvptM9P/0sa
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T110A3F14079F44552D42F62B630B71C34A193FBA98FBC8297EBAF3B26FF636404A00951
sha3_384: a96853c2221b73f2885a73f21351062ab964e0ff6e425b5b9699233ccec66ad332ff008d7fa4dfeccc0d0aad740fcd1e
ep_bytes: 60be000055008dbe0010ebff57eb0b90
timestamp: 2007-02-20 15:10:08


Version Info:

CompanyName: R!uv
FileDescription: Norurir
FileVersion: 5, 6, 2
ProductName: Mob Benny Docket Chin
ProductVersion: 5 6 6450
PKXmmyhUbot: jIYOHo3bvW
FqvKIlFgTQ4DXCIWxv: 6Lv3xktLeWxyo3sS
rRvfCtXXlWC: pIsOqvV4QPGQn8DVTlAI
Translation: 0x0409 0x04b0

Trojan.Generic.KDV.917621 also known as:

BkavW32.Common.563579DA
LionicTrojan.Win32.Tepfer.i!c
Elasticmalicious (moderate confidence)
CynetMalicious (score: 100)
FireEyeGeneric.mg.bac6b8bfb5008e5d
McAfeeBackDoor-FJW.c
ZillyaTrojan.Tepfer.Win32.43653
SangforSuspicious.Win32.Save.a
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaTrojanPSW:Win32/Tepfer.80bb6a67
K7GWPassword-Stealer ( 0040f2a51 )
K7AntiVirusPassword-Stealer ( 0040f2a51 )
CyrenW32/Trojan.ESCV-5968
SymantecML.Attribute.HighConfidence
ESET-NOD32Win32/PSW.Fareit.A
APEXMalicious
Paloaltogeneric.ml
ClamAVWin.Trojan.Tepfer-272
KasperskyTrojan-PSW.Win32.Tepfer.hncl
BitDefenderTrojan.Generic.KDV.917621
NANO-AntivirusTrojan.Win32.Tepfer.bobraz
ViRobotTrojan.Win32.PSW-Tepfer.100864
MicroWorld-eScanTrojan.Generic.KDV.917621
AvastWin32:Trojan-gen
TencentWin32.Trojan-qqpass.Qqrob.Pitq
Ad-AwareTrojan.Generic.KDV.917621
EmsisoftTrojan.Generic.KDV.917621 (B)
ComodoMalware@#2d96fdq62ei8z
DrWebTrojan.PWS.Stealer.1932
VIPRETrojan.Generic.KDV.917621
TrendMicroTSPY_FAREIT.NRL
McAfee-GW-EditionBackDoor-FJW.c
Trapminemalicious.high.ml.score
SophosMal/Generic-R + Troj/Zbot-EJU
IkarusTrojan-PSW.Win32.Tepfer
GDataWin32.Trojan.Agent.X7K9D2
JiangminTrojan/PSW.Tepfer.awpx
WebrootW32.Trojan.Gen
AviraTR/PSW.Tepfer.EB.41
Antiy-AVLTrojan/Generic.ASMalwS.17F
KingsoftWin32.PSWTroj.Tepfer.hn.(kcloud)
ArcabitTrojan.Generic.KDV.DE0075
MicrosoftPWS:Win32/Fareit
GoogleDetected
AhnLab-V3Win-Trojan/Fareit.100864
ALYacTrojan.Generic.KDV.917621
MAXmalware (ai score=100)
VBA32BScope.Malware-Cryptor.8413
CylanceUnsafe
TrendMicro-HouseCallTSPY_FAREIT.NRL
RisingTrojan.Kryptik!8.8 (CLOUD)
YandexTrojan.GenAsa!DyuShVMrIcQ
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Kryptik.AX!tr
BitDefenderThetaGen:NN.ZexaF.34592.gmKfaqNaY6v
AVGWin32:Trojan-gen
Cybereasonmalicious.fb5008
PandaTrj/OCJ.D

How to remove Trojan.Generic.KDV.917621?

Trojan.Generic.KDV.917621 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment