Trojan

Trojan.Heur.GM.1044808000 malicious file

Malware Removal

The Trojan.Heur.GM.1044808000 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur.GM.1044808000 virus can do?

  • At least one process apparently crashed during execution
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.Heur.GM.1044808000?



File Info:

name: B4EF11781E60FB95D5AD.mlw
path: /opt/CAPEv2/storage/binaries/526675bb545d136918a5bff991e91bf8258aa7cccbba42a03d26f414807c4b3b
crc32: 0634A7A2
md5: b4ef11781e60fb95d5ad609954b737c3
sha1: e5f5d51beedef211740c24e57075d0f3049b98c1
sha256: 526675bb545d136918a5bff991e91bf8258aa7cccbba42a03d26f414807c4b3b
sha512: 7f912c4850597a3a28ae7941850ec32f68e6211bf24851b3d0644eb41cdfcdb3c654e870a20899e6657f66bec4b181340d67995ac948fe6b7143fa7c8c0e67c8
ssdeep: 768:sayILgFjkHqy0Miz3Xx3a6b64tU2ZwtjolQs01j0C3awoQFnfv8FiVF7DXe:hIyKuiT9hUsesq0bwDn7O
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1F433E1E38A5B48AAFD99F2FD13992E10CE63380CDF1529334ACB7776145B9096113E8D
sha3_384: c874061e5a0cef0f4cc24108528847419e702cc823958ac236c70f02713113b9961961c8abe1a64ddccc2e3814ab0626
ep_bytes: b9fcc60d02030d5710400081c184215f
timestamp: 2008-07-24 19:16:17


Version Info:

0: [No Data]

Trojan.Heur.GM.1044808000 also known as:

BkavW32.AIDetect.malware2
LionicTrojan.Win32.Agent.kZn8
Elasticmalicious (high confidence)
DrWebTrojan.PWS.Panda.109
MicroWorld-eScanGen:Trojan.Heur.GM.1044808000
FireEyeGeneric.mg.b4ef11781e60fb95
McAfeeArtemis!B4EF11781E60
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0055dd191 )
AlibabaTrojanSpy:Win32/Cryptor.caee25f0
K7GWTrojan ( 0055dd191 )
CrowdStrikewin/malicious_confidence_90% (W)
BitDefenderThetaAI:Packer.5BF0C9C51D
VirITTrojan.Win32.Panda.EF
CyrenW32/Zbot.I.gen!Eldorado
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_ZBOT.AHL
Paloaltogeneric.ml
CynetMalicious (score: 100)
KasperskyTrojan-Spy.Win32.Zbot.zjqk
BitDefenderGen:Trojan.Heur.GM.1044808000
NANO-AntivirusTrojan.Win32.Zbot.cwnboh
AvastWin32:Malware-gen
TencentWin32.Trojan.Zbot.Phgp
SophosMal/Generic-S
ComodoMalware@#10diiu5e4ourp
ZillyaTrojan.Zbot.Win32.744
TrendMicroTROJ_ZBOT.AHL
McAfee-GW-EditionBehavesLike.Win32.Dropper.qc
EmsisoftGen:Trojan.Heur.GM.1044808000 (B)
IkarusTrojan.Crypt
JiangminTrojanSpy.Zbot.bdwe
WebrootW32.Malware.Gen
AviraTR/Crypt.XPACK.Gen
Antiy-AVLTrojan[Spy]/Win32.Zbot
KingsoftWin32.Troj.Zbot.d.(kcloud)
MicrosoftPWS:Win32/Zbot
ViRobotTrojan.Win32.Zbot.416768
ZoneAlarmTrojan-Spy.Win32.Zbot.zjqk
GDataGen:Trojan.Heur.GM.1044808000
AhnLab-V3Worm/Win32.IRCBot.R106389
ALYacSpyware.Zbot.vx
MAXmalware (ai score=100)
VBA32Malware-Cryptor.General.3
APEXMalicious
RisingSpyware.Zbot!8.16B (TFE:dGZlOgGQHFmzwcpRbg)
YandexTrojan.GenAsa!ttqM5Fddjs0
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_96%
FortinetW32/PackZbot.AFG!tr
AVGWin32:Malware-gen
PandaTrj/Genetic.gen
MaxSecureTrojan.Malware.1022315.susgen

How to remove Trojan.Heur.GM.1044808000?

Trojan.Heur.GM.1044808000 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment