Trojan

Trojan.GenericPMF.S28196910 removal tips

Malware Removal

The Trojan.GenericPMF.S28196910 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan.GenericPMF.S28196910 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Presents an Authenticode digital signature
  • Creates RWX memory
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.GenericPMF.S28196910?


File Info:

name: A72620E5BE1C5F1D5635.mlw
path: /opt/CAPEv2/storage/binaries/cd7a440b4e019dee8be2686c29d9dbea7898fd2c94d8481e96b82479f2122221
crc32: A69EE820
md5: a72620e5be1c5f1d5635fa007e7dc4e1
sha1: 6b46e1533347241fb30008d7aca96feb2b0a45da
sha256: cd7a440b4e019dee8be2686c29d9dbea7898fd2c94d8481e96b82479f2122221
sha512: b1e81e70ae4cf097d42375fc68a14e2bb7d9ef0cd5a963e6aa96c66af96ecfc260377a067f10bd2d7a8c7f8d94b310cfdbd77cb68f1b16319821c196c3b9bd13
ssdeep: 24576:DhKxfn1u3TlVmzij7zryybiuIDYusXW3agOS6Dqo24Wwk25LEBXmuQ5p3h3pD:Dh81aiwryyG1OXDCgWzMb
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T12DC52A136A8B0E75DDC27BB461CB633B9734FD30CA2A9B7FE609C43599532C4681A742
sha3_384: e0c1287b0fba5b13e013688fb290055537cd86020d6ed7588ab013f3560d9b12a4335761df44bc2eaccbcd19e2fbfb46
ep_bytes: 83ec1cc7042401000000ff15e4025400
timestamp: 2022-06-27 05:46:19

Version Info:

0: [No Data]

Trojan.GenericPMF.S28196910 also known as:

CynetMalicious (score: 100)
CAT-QuickHealTrojan.GenericPMF.S28196910
McAfeeGenericRXTJ-UH!A72620E5BE1C
K7AntiVirusTrojan ( 00593a4b1 )
K7GWTrojan ( 00593a4b1 )
CyrenW32/Kryptik.GXJ.gen!Eldorado
ESET-NOD32a variant of Win32/Kryptik.HPRZ
ClamAVWin.Malware.Jaik-9952806-0
KasperskyHEUR:Trojan.Win32.Inject.gen
BitDefenderTrojan.GenericKDZ.89258
MicroWorld-eScanTrojan.GenericKDZ.89258
EmsisoftTrojan.GenericKDZ.89258 (B)
TrendMicroTROJ_GEN.R06CC0PFR22
McAfee-GW-EditionGenericRXTJ-UH!A72620E5BE1C
IkarusTrojan.Win32.Crypt
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
ZoneAlarmHEUR:Trojan.Win32.Inject.gen
GDataWin32.Trojan.PSE.1DD2XB9
MAXmalware (ai score=81)
CylanceUnsafe
TrendMicro-HouseCallTROJ_GEN.R06CC0PFR22
RisingTrojan.Kryptik!8.8 (TFE:dGZlOgU3rx5AmtT6Vw)
FortinetW32/Kryptik.HPRZ!tr
BitDefenderThetaGen:NN.ZexaF.34742.z!Z@aq0puGb

How to remove Trojan.GenericPMF.S28196910?

Trojan.GenericPMF.S28196910 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment