Trojan

Trojan.Heur2.ZGY.7 (B) removal

Malware Removal

The Trojan.Heur2.ZGY.7 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur2.ZGY.7 (B) virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • A file was accessed within the Public folder.
  • Authenticode signature is invalid
  • Checks for the presence of known devices from debuggers and forensic tools
  • Checks for the presence of known devices from debuggers and forensic tools
  • Detects the presence of Windows Defender AV emulator via files

How to determine Trojan.Heur2.ZGY.7 (B)?



File Info:

name: FC85CF2077DBB949C3BE.mlw
path: /opt/CAPEv2/storage/binaries/d89f2c6db91a1000572379d4c081281f0a6eff5c858fa2e10c5c95fd5fe27308
crc32: 9C5BFD29
md5: fc85cf2077dbb949c3be7b47fa2f2c3d
sha1: e15ba598b25f90606e0343db2a2b3856efb0e343
sha256: d89f2c6db91a1000572379d4c081281f0a6eff5c858fa2e10c5c95fd5fe27308
sha512: 268c88c208b3c5e9fc739c237af470d4b279616ead431c92bba49f166ee6245e9f7b64260bb2da06d607aa0cf40e262e61cceb095a05904937ec4eeb2fe7f3f0
ssdeep: 1536:HcQ1C7bP1/EtE/5DygGLjuNGFt3DgofKfH+z:jwbP1/EtE/+4Hg
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1DE73542A5EBD6036E569C5B24FE098AAF815FD3735906C6765C29B4807329C334E233F
sha3_384: 6d78225be10704f43fad886ca68241bd9d9b1708bd4e4387a503ea753c5246e17b298d6d972b3367c863a3f488cacdd3
ep_bytes: 6844224000e8eeffffff000000000000
timestamp: 2001-06-11 08:15:19


Version Info:

Translation: 0x0407 0x04b0
CompanyName: BT Deutschland GmbH
ProductName: ScanVBS
FileVersion: 1.00
ProductVersion: 1.00
InternalName: ScanVBS
OriginalFilename: ScanVBS.exe

Trojan.Heur2.ZGY.7 (B) also known as:

BkavW32.AIDetectMalware
MicroWorld-eScanGen:Trojan.Heur2.ZGY.7
FireEyeGen:Trojan.Heur2.ZGY.7
ALYacGen:Trojan.Heur2.ZGY.7
BitDefenderGen:Trojan.Heur2.ZGY.7
EmsisoftGen:Trojan.Heur2.ZGY.7 (B)
VIPREGen:Trojan.Heur2.ZGY.7
McAfee-GW-EditionBehavesLike.Win32.BadFile.lt
GDataGen:Trojan.Heur2.ZGY.7
MAXmalware (ai score=82)
ArcabitTrojan.Heur2.ZGY.7
McAfeeArtemis!FC85CF2077DB
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09DG23
MaxSecureTrojan.Malware.300983.susgen
BitDefenderThetaAI:Packer.CB444DC315
DeepInstinctMALICIOUS

How to remove Trojan.Heur2.ZGY.7 (B)?

Trojan.Heur2.ZGY.7 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment