Trojan.GenericFCA.Agent.45156 removal

The Trojan.GenericFCA.Agent.45156 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.GenericFCA.Agent.45156 virus can do?

CAPE extracted potentially suspicious content
Authenticode signature is invalid

How to determine Trojan.GenericFCA.Agent.45156?


File Info:
name: A0E4C8564B535FACE36A.mlw
path: /opt/CAPEv2/storage/binaries/1fde3a1f1a17bbe1ef3ba5cac42597d1bcd57046c58dcc2bb73cdd48d743ded3
crc32: E9DB86FE
md5: a0e4c8564b535face36a243b88427071
sha1: fbbf673e7231175ddda8d98406725a555224c18d
sha256: 1fde3a1f1a17bbe1ef3ba5cac42597d1bcd57046c58dcc2bb73cdd48d743ded3
sha512: 6fab7da6b196b73ffc9c22559d3993bd7bce53691545ea299785c4311f8a3ee2023ae457d320bcc591e1c39d78afb8298860c56e30cb82fe2d581c5385d8c8ad
ssdeep: 3072:RZHxZ1s1Z4YCZQ8JUVov2cTbtCpvQUQTHPiczs8:RZHxZ1QEZQ86VovQVA
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15FF3EB2C77AC4372C5EE4F7419ABF00271BC6CA39D659BBD05C845BFC901A4A690D2FA
sha3_384: 20fae26688de0b84e3ce561d28946a602961e25ce57b2ab4d43afd7531cc86f49ef3321b1ab87cba24e6c5a5e55406a8
ep_bytes: ff2508a942000000000000000000dca8
timestamp: 2022-08-17 03:09:53

Version Info:
Translation: 0x0000 0x04b0
Comments: System.Runtime.Caching.CacheEntryChangeMonitor
FileDescription: System.Runtime.Caching.CacheEntryChangeMonitor
FileVersion: 1.0.0.0
InternalName: KwBeP.exe
LegalCopyright: System.Runtime.Caching.CacheEntryChangeMonitor Copyright ©  2012
OriginalFilename: KwBeP.exe
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Trojan.GenericFCA.Agent.45156 also known as:

DrWeb	Trojan.PWS.Stealer.34403
MicroWorld-eScan	Trojan.GenericFCA.Agent.45156
FireEye	Trojan.GenericFCA.Agent.45156
McAfee	RDN/Generic PWS.y
Sangfor	Suspicious.Win32.Save.a
Cyren	W32/MSIL_Agent.DUA.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (moderate confidence)
ESET-NOD32	a variant of MSIL/TrojanDownloader.Agent.MZW
APEX	Malicious
Kaspersky	HEUR:Trojan-PSW.MSIL.Stealer.gen
BitDefender	Trojan.GenericFCA.Agent.45156
Avast	Win32:RATX-gen [Trj]
Ad-Aware	Trojan.GenericFCA.Agent.45156
Emsisoft	Trojan.GenericFCA.Agent.45156 (B)
VIPRE	Trojan.GenericFCA.Agent.45156
McAfee-GW-Edition	RDN/Generic PWS.y
SentinelOne	Static AI – Suspicious PE
GData	Trojan.GenericFCA.Agent.45156
Google	Detected
Avira	HEUR/AGEN.1252737
Antiy-AVL	Trojan/Generic.ASMalwS.6B66
Arcabit	Trojan.GenericFCA.Agent.DB064
Microsoft	Trojan:Win32/Wacatac.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Generic.C5225095
ALYac	Trojan.GenericFCA.Agent.45156
MAX	malware (ai score=87)
Malwarebytes	Malware.AI.1625979773
Ikarus	Trojan-Downloader.MSIL.Agent
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	MSIL/Agent.MZW!tr.dldr
AVG	Win32:RATX-gen [Trj]
Panda	Trj/GdSda.A

How to remove Trojan.GenericFCA.Agent.45156?

Trojan.GenericFCA.Agent.45156 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X