Should I remove “Trojan.GenericRI.S30677772”?

The Trojan.GenericRI.S30677772 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.GenericRI.S30677772 virus can do?

Authenticode signature is invalid

How to determine Trojan.GenericRI.S30677772?


File Info:
name: 22711190895D4ACD7930.mlw
path: /opt/CAPEv2/storage/binaries/71ceb2bf7872a381f7df8d960853927046dd4b0ebd6b4451b25909e92998e433
crc32: 4D5CD71B
md5: 22711190895d4acd7930b1a0e9509b61
sha1: b30a86bc3d7c51135c446cc919541607e8f9d3e7
sha256: 71ceb2bf7872a381f7df8d960853927046dd4b0ebd6b4451b25909e92998e433
sha512: 60db6a057a7f194882909a72ead91d206052f386f4ec120e35d7f7393dc1a8b8db2594e6e8b8eb877a3e4e93ac512c05957fabd75ceaa29f910184fa924fb91b
ssdeep: 6144:+JUsZEwQ5Fnp0Ak27gU6bF8VmOAOEp4h4zDj2pS7DaKFh:+iaXgFnphE780OGP6pSXaEh
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T105B45B0DFA528433C42E2631FCA4FFB9076C69A02A7586DBBBD03E2B79706C1D535562
sha3_384: c995f58f93564472d253790b7b220c25dbcda0fa10b8279cf0005a384e1e0d32fcf4a5c82f0a379ce02056ef09ec4313
ep_bytes: e841070000e974feffff8b4df464890d
timestamp: 2023-05-19 10:44:36

Version Info:
FileVersion: 1.0.0.0
LegalCopyright: 2020-2022 All rights reserved
Translation: 0x0409 0x04b0

Trojan.GenericRI.S30677772 also known as:

Bkav	W32.AIDetectMalware
FireEye	Generic.mg.22711190895d4acd
CAT-QuickHeal	Trojan.GenericRI.S30677772
Skyhigh	GenericRXWA-SU!22711190895D
McAfee	GenericRXWA-SU!22711190895D
Malwarebytes	Generic.Trojan.Malicious.DDS
K7AntiVirus	Trojan ( 005a5f921 )
K7GW	Trojan ( 005a5f921 )
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Agent_AGen.BIE
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Malware.Lazy-10005784-0
Kaspersky	HEUR:Trojan.Win32.Agent.gen
NANO-Antivirus	Trojan.Win32.AgentAGen.jwrfli
TACHYON	Trojan/W32.Agent.511488.FD
Sophos	Generic ML PUA (PUA)
F-Secure	Heuristic.HEUR/AGEN.1311423
Zillya	Backdoor.Taidoor.Win32.47
Ikarus	Win32.Outbreak
Jiangmin	Backdoor.Taidoor.a
Webroot	W32.Trojan.Gen
Varist	W32/Zusy.HY.gen!Eldorado
Avira	HEUR/AGEN.1311423
Antiy-AVL	Trojan/Win32.Wacatac.b
Microsoft	Trojan:Script/Phonzy.A!ml
ZoneAlarm	HEUR:Trojan.Win32.Agent.gen
GData	Win32.Trojan.PSE.1QL09ZZ
Google	Detected
AhnLab-V3	Trojan/Win.NG.R582859
BitDefenderTheta	Gen:NN.ZexaF.36792.Fu0@a4KNlVhi
DeepInstinct	MALICIOUS
VBA32	Trojan.Agent
Panda	Trj/Genetic.gen
Rising	Backdoor.Taidoor!8.12B19 (TFE:5:U97EJoFnKbT)
Yandex	Trojan.Agent_AGen!E1mteUq63WI
SentinelOne	Static AI – Suspicious PE
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Agent_AGen.BIE!tr
AVG	Win32:PWSX-gen [Trj]
Avast	Win32:PWSX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Trojan.GenericRI.S30677772?

Trojan.GenericRI.S30677772 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X