Trojan

Should I remove “Trojan.GenericFCA.Agent.31999”?

Malware Removal

The Trojan.GenericFCA.Agent.31999 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.GenericFCA.Agent.31999 virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • The binary likely contains encrypted or compressed data.
  • Binary file triggered YARA rule
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.GenericFCA.Agent.31999?



File Info:

name: AA877144EDCEF2E8D5A8.mlw
path: /opt/CAPEv2/storage/binaries/3dca9bd1af28bbf348c0562475edd60de2b5a2424e586eaf118909b013054eee
crc32: DD4E59A5
md5: aa877144edcef2e8d5a8d37d7ea0d4b6
sha1: 865fe61d037b67841c36468a9e7af15656621abc
sha256: 3dca9bd1af28bbf348c0562475edd60de2b5a2424e586eaf118909b013054eee
sha512: 300386cf27f163867e5448acb6119ef774d9ebf4e3702ff8ceb578477c583982151f95d21ac0ec2979b72034d51fae244eca37ba60256334cee42926cdcbad6b
ssdeep: 12288:XYra7Ehu1xQrMzVlbKEKfY2rHblIK7UJegeioQ:dIO+yVZKi2rHSK7Ukkx
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15DB4C041F2A8DC4AD16A4AB54C76C1302979AE48D475C71E38D7FE0F79B2383102BB9B
sha3_384: c26096e56f1dde7bee891cabf94f73bc9974afad0bfebb0abb456b7976d0286ef8e575a442e5abbf282ed68e7bf78ec9
ep_bytes: ff250020400000000000000000000000
timestamp: 2016-07-15 12:41:55


Version Info:

Translation: 0x0000 0x04b0
Comments: 
CompanyName: 广州视睿电子科技有限公司 (Guangzhou Shirui Electronics Co.)
FileDescription: Updater
FileVersion: 2.0.0.218
InternalName: Updater.exe
LegalCopyright: Copyright © 2016 Guangzhou Shirui Electronics Co.,Ltd, All Rights Reserved.
LegalTrademarks: 
OriginalFilename: Updater.exe
ProductName: Updater
ProductVersion: 2.0.0.218 - (3d58f88b)
Assembly Version: 2.0.0.0

Trojan.GenericFCA.Agent.31999 also known as:

MicroWorld-eScanTrojan.GenericFCA.Agent.31999
FireEyeTrojan.GenericFCA.Agent.31999
SkyhighArtemis!Trojan
ALYacTrojan.MSIL.Stealer.gen
Cylanceunsafe
TrendMicro-HouseCallTrojanSpy.MSIL.NEGASTEAL.RJAHQFZ
McAfeeArtemis!AA877144EDCE
BitDefenderTrojan.GenericFCA.Agent.31999
EmsisoftTrojan.GenericFCA.Agent.31999 (B)
GoogleDetected
VIPRETrojan.GenericFCA.Agent.31999
TrendMicroTrojanSpy.MSIL.NEGASTEAL.RJAHQFZ
SophosMal/Generic-S
Antiy-AVLTrojan/Win32.SGeneric
ArcabitTrojan.GenericFCA.Agent.D7CFF
GDataTrojan.GenericFCA.Agent.31999
MalwarebytesGeneric.Malware/Suspicious
RisingSpyware.Stealer!8.3090 (CLOUD)
IkarusTrojan-Spy.MSIL.Stealer
MaxSecureTrojan.Malware.140721406.susgen
DeepInstinctMALICIOUS

How to remove Trojan.GenericFCA.Agent.31999?

Trojan.GenericFCA.Agent.31999 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment