Trojan

Trojan.Heur2.GZ.XmGfbK137KdO information

Malware Removal

The Trojan.Heur2.GZ.XmGfbK137KdO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur2.GZ.XmGfbK137KdO virus can do?

  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Authenticode signature is invalid
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Heur2.GZ.XmGfbK137KdO?



File Info:

name: ADDCFFD083E8F5BD01B0.mlw
path: /opt/CAPEv2/storage/binaries/18cff0be4550f69a460ac282b58a19641724329f57d654f2a8318cc98be8c3e1
crc32: F1969E2A
md5: addcffd083e8f5bd01b0ef00483420e2
sha1: 3f205465d40d569bb376bbff1169ba0522b0b143
sha256: 18cff0be4550f69a460ac282b58a19641724329f57d654f2a8318cc98be8c3e1
sha512: a98e6a97556ca2f185fe30c61ce1aecd2c194a9c693899d64f6a490544db57344ccd181dbff2136e0907d2f9c59192f0152cbf448dd322dce657e190efbd57cb
ssdeep: 49152:Y2AHniZHaxP5vUWEQRbJVLb6rexXuzOnBbUZN+0skXg:BAHiZH+hZEQxb6relu6BbUu0i
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D4A5330079C4C962E2001C7D25145E72EB36ECF8264438EBFB6C7AA65DBC6FAD0D5617
sha3_384: 062d8e62cf70146445403ddb1ec8c3e8c832068616af6dabaad0938ce28998d38f7f08680e5f80c2d9a21b39442ff2a5
ep_bytes: 558bec6aff68b02c41006880d6400064
timestamp: 2011-08-02 16:25:46


Version Info:

0: [No Data]

Trojan.Heur2.GZ.XmGfbK137KdO also known as:

BkavW32.AIDetectMalware
MicroWorld-eScanGen:Trojan.Heur2.GZ.XmGfbK137KdO
FireEyeGen:Trojan.Heur2.GZ.XmGfbK137KdO
SkyhighBehavesLike.Win32.Dropper.vc
McAfeeArtemis!0F22BB061635
VIPREGen:Trojan.Heur2.GZ.XmGfbK137KdO
BitDefenderGen:Trojan.Heur2.GZ.XmGfbK137KdO
SymantecTrojan.Gen.MBT
APEXMalicious
RisingTrojan.Generic@AI.100 (RDML:e97Ar+7l0HkuEl5mZO7cYg)
EmsisoftGen:Trojan.Heur2.GZ.XmGfbK137KdO (B)
MicrosoftPUA:Win32/Presenoker
ArcabitTrojan.Heur2.GZ.XmGfbK137KdO
GDataGen:Trojan.Heur2.GZ.XmGfbK137KdO
ALYacGen:Trojan.Heur2.GZ.XmGfbK137KdO
MAXmalware (ai score=81)
DeepInstinctMALICIOUS
BitDefenderThetaAI:Packer.9BFFE85320

How to remove Trojan.Heur2.GZ.XmGfbK137KdO?

Trojan.Heur2.GZ.XmGfbK137KdO removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment