Trojan

Trojan.Lethic.Gen.4 (B) removal tips

Malware Removal

The Trojan.Lethic.Gen.4 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Lethic.Gen.4 (B) virus can do?

  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan.Lethic.Gen.4 (B)?



File Info:

name: ADC6E370ABA74502CACA.mlw
path: /opt/CAPEv2/storage/binaries/0596e5e3f833afa1cb98c209ac2160cceda99e4043a48dcfaed408347eae0aef
crc32: 6390D495
md5: adc6e370aba74502caca0789fbf6fe40
sha1: b2a93a5a9ccef31c3472d5af935abdd898a9c109
sha256: 0596e5e3f833afa1cb98c209ac2160cceda99e4043a48dcfaed408347eae0aef
sha512: 2fc8980b45e7d21529bf9bcf01a5fbaa3023249a568e3edad817ba7a839915c8f91cc2a685539414866d30d1b38a7d2b726a821850b89a0507d6f8167826adf0
ssdeep: 24576:sf4zzkF9wQ4r60nNlfrBZS/nPKCIbg25dQEK24Ve/Qx4INiK4qyJmEHADhqimChz:sh9wQ4r60nNpNZMJlBETQxJiK4qyJmEK
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16C65E197BA4413B3C2D101B3265F8DC2BB2ABD35536A94E37098B31F02B39A5537B752
sha3_384: e6ec60bd2cde4acb2879cb8fa0114e5d10e2718c673fb59a670fb7f32c7db6b77cea59f42419ae5995eef957a9d09765
ep_bytes: e883380000e989feffff8bff558bec5d
timestamp: 2007-10-15 03:05:31


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft Setup Bootstrapper
FileVersion: 14.0.4734.1000
InternalName: setup.exe
LegalCopyright: © 2010 Microsoft Corporation.  All rights reserved.
LegalTrademarks1: Microsoft® is a registered trademark of Microsoft Corporation.
LegalTrademarks2: Windows® is a registered trademark of Microsoft Corporation.
OriginalFilename: setup.exe
ProductName: Microsoft Setup Bootstrapper
ProductVersion: 14.0.4734.1000
Translation: 0x0000 0x04e4

Trojan.Lethic.Gen.4 (B) also known as:

BkavW32.AIDetectMalware
tehtrisGeneric.Malware
DrWebTrojan.MulDrop10.21631
MicroWorld-eScanTrojan.Lethic.Gen.4
FireEyeGeneric.mg.adc6e370aba74502
SkyhighBehavesLike.Win32.Generic.tc
ALYacTrojan.Lethic.Gen.4
Cylanceunsafe
VIPRETrojan.Lethic.Gen.4
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 004c20d31 )
BitDefenderTrojan.Lethic.Gen.4
K7GWTrojan ( 004c20d31 )
Cybereasonmalicious.a9ccef
ArcabitTrojan.Lethic.Gen.4
BitDefenderThetaGen:NN.ZexaF.36792.yv3@aeALuKli
VirITTrojan.Win32.Genus.KDL
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32Win32/Salgorea.S
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Malware.Lethic-9787038-0
KasperskyHEUR:Trojan.Win32.Generic
NANO-AntivirusTrojan.Win32.Kryptik.dsnfod
RisingTrojan.Salgorea!1.BAD6 (CLASSIC)
EmsisoftTrojan.Lethic.Gen.4 (B)
ZillyaDropper.Agent.Win32.208093
Trapminemalicious.moderate.ml.score
SophosTroj/AutoG-DO
IkarusTrojan.Win32.Salgorea
JiangminTrojan.Generic.aykci
VaristW32/S-5d281ba5!Eldorado
MAXmalware (ai score=82)
Antiy-AVLTrojan[Dropper]/Win32.Agent
XcitiumTrojWare.Win32.Salgorea.RPR@7tcxjx
MicrosoftTrojan:Win32/Salgorea.C!MTB
ZoneAlarmHEUR:Trojan.Win32.Generic
GDataTrojan.Lethic.Gen.4
GoogleDetected
AhnLab-V3Trojan/Win.WK.C5283768
Acronissuspicious
McAfeeGenericRXMU-GD!ADC6E370ABA7
DeepInstinctMALICIOUS
VBA32TrojanDropper.Agent
MalwarebytesGeneric.Malware.AI.DDS
PandaGeneric Suspicious
TencentMalware.Win32.Gencirc.10b0a850
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Salgorea.S!tr
AVGWin32:TrojanX-gen [Trj]
AvastWin32:TrojanX-gen [Trj]
CrowdStrikewin/malicious_confidence_100% (D)

How to remove Trojan.Lethic.Gen.4 (B)?

Trojan.Lethic.Gen.4 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment