Trojan

Should I remove “Trojan.Heur3.LVP.smLfa4apuSiI”?

Malware Removal

The Trojan.Heur3.LVP.smLfa4apuSiI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Heur3.LVP.smLfa4apuSiI virus can do?

  • Sample contains Overlay data
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • The executable is compressed using UPX
  • Authenticode signature is invalid
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.Heur3.LVP.smLfa4apuSiI?



File Info:

name: 6E914C283E078AD6CEAE.mlw
path: /opt/CAPEv2/storage/binaries/6bb1404f63e23b7ab20ff8637e4b49fc9900da32a7ccea07fb8ae07d68792dd1
crc32: B3693A45
md5: 6e914c283e078ad6ceaee87b492f2b43
sha1: 538c4bc3779f78318f645a743eadc00922676fb5
sha256: 6bb1404f63e23b7ab20ff8637e4b49fc9900da32a7ccea07fb8ae07d68792dd1
sha512: 7ab02c421a83003219961d7c2f0051523cac5178c291dd1bed5222cf6f089586a59c9293703eeed9f690bda91e094940db8f4f6ac1885230629338a6657f0f0f
ssdeep: 6144:xLTjL42jqBrMbssW46k3yarwNBCP4NMdo:xLTX42jqpMYsW46IfwXCANMdo
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14E542353A711B4AED0518B7AA1308BB1B9F7B448F988015F73E9F35E1BB43B0D256427
sha3_384: 653ef387dab0bff2df88626ae4e2d36bbdb2b1a45c3f32cd1ea314c135d6fa15c7703998fb513789bf57d5580a5ee971
ep_bytes: 60be00f046008dbe0020f9ff5783cdff
timestamp: 2015-06-03 05:22:55


Version Info:

Comments: http://wincdemu.sysprogs.org/
CompanyName: Sysprogs OU
FileDescription: Portable WinCDEmu
FileVersion: 4.0
LegalCopyright: LGPL
LegalTrademarks: Sysprogs
OriginalFilename: PortableWinCDEmu.exe
ProductName: WinCDEmu
ProductVersion: 4.0
Translation: 0x0000 0x04b0

Trojan.Heur3.LVP.smLfa4apuSiI also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Trojan.Heur3.LVP.smLfa4apuSiI
FireEyeGen:Trojan.Heur3.LVP.smLfa4apuSiI
SkyhighArtemis
McAfeeArtemis!6E914C283E07
Cylanceunsafe
APEXMalicious
TrendMicro-HouseCallTROJ_GEN.R002H09EB21
BitDefenderGen:Trojan.Heur3.LVP.smLfa4apuSiI
VIPREGen:Trojan.Heur3.LVP.smLfa4apuSiI
Trapminemalicious.moderate.ml.score
GDataGen:Trojan.Heur3.LVP.smLfa4apuSiI
Kingsoftmalware.kb.b.778
ArcabitTrojan.Heur3.LVP.smLfa4apuSiI
ALYacGen:Trojan.Heur3.LVP.smLfa4apuSiI
MaxSecureTrojan.Malware.237690004.susgen
DeepInstinctMALICIOUS
alibabacloudTrojan:Win/Heur3.LVP

How to remove Trojan.Heur3.LVP.smLfa4apuSiI?

Trojan.Heur3.LVP.smLfa4apuSiI removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment