Trojan

Trojan.Heur.BOWbrrQDZXebk removal tips

Malware Removal

The Trojan.Heur.BOWbrrQDZXebk is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur.BOWbrrQDZXebk virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Heur.BOWbrrQDZXebk?



File Info:

name: D3BFC4015E0FB83F2552.mlw
path: /opt/CAPEv2/storage/binaries/02af9f47a4f203d00669d9661d4d4f09a4eb9e24e9f9fb1b6892a2afc819c1ab
crc32: 26B248F0
md5: d3bfc4015e0fb83f2552cf06497799ec
sha1: 1fb906eb58289b879d73cf421a38fdfbc4c916e6
sha256: 02af9f47a4f203d00669d9661d4d4f09a4eb9e24e9f9fb1b6892a2afc819c1ab
sha512: 9d13bdabba3ba7f73fa0a72161ec28f8e1e81a4130c777cd31ac931f4e7c85e8805493aa42e4c02482e33215d7155115e8be35f97002416947faa274597d3349
ssdeep: 12288:oAS7A327Ss31uivH9lK/j8eV/Iwy+14achTnolwDTN61:oAS7GsFvvOTV/O+colwDTNi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T156C42323ADCE09FAE11C5CF85736E260E3166E2C1D519CB8B6BCEEDC0D552015DD988B
sha3_384: 571142f51797148089d714219a798423ce7dfc9d557887407236b8162efe864d3790edec131eeee3a7ee7c30c4dbeea5
ep_bytes: 558bec83c4f053565733c08945f0e805
timestamp: 1992-06-19 22:22:17


Version Info:

0: [No Data]

Trojan.Heur.BOWbrrQDZXebk also known as:

MicroWorld-eScanGen:Trojan.Heur.BOWbrrQDZXebk
FireEyeGen:Trojan.Heur.BOWbrrQDZXebk
McAfeeArtemis!DD18F8835B54
MalwarebytesMalware.Heuristic.1004
VIPREGen:Trojan.Heur.BOWbrrQDZXebk
SangforTrojan.Win32.Agent.Vout
Cybereasonmalicious.15e0fb
BitDefenderThetaAI:Packer.31B738791D
BitDefenderGen:Trojan.Heur.BOWbrrQDZXebk
EmsisoftGen:Trojan.Heur.BOWbrrQDZXebk (B)
McAfee-GW-EditionBehavesLike.Win32.BadFile.hc
GDataGen:Trojan.Heur.BOWbrrQDZXebk
XcitiumMalware@#1wr0n9h07ln3b
ArcabitTrojan.Heur.BOWbrrQDZXebk
MicrosoftPUA:Win32/Presenoker
VBA32Adware.Presenoker
ALYacGen:Trojan.Heur.BOWbrrQDZXebk
Cylanceunsafe
RisingTrojan.Win32.Generic.1272F3F0 (C64:YzY0OkCwFbr9eX/9)
YandexTrojanSpy.Agent!FWRJkvPa2Jk
MaxSecureTrojan.Malware.74634715.susgen
DeepInstinctMALICIOUS

How to remove Trojan.Heur.BOWbrrQDZXebk?

Trojan.Heur.BOWbrrQDZXebk removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment