Trojan

Trojan.Logger.PEC information

Malware Removal

The Trojan.Logger.PEC is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Logger.PEC virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Turkish
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.Logger.PEC?



File Info:

name: 81E7C2A40F610B06F048.mlw
path: /opt/CAPEv2/storage/binaries/c23048b7fd3a02e77b89086fac236cdaba9daad51347a42692ef8bef00051fb8
crc32: 7F94BF76
md5: 81e7c2a40f610b06f0488ba9437981f7
sha1: 9855cf84efffcf923ee9e52f93ffcaf4483f7165
sha256: c23048b7fd3a02e77b89086fac236cdaba9daad51347a42692ef8bef00051fb8
sha512: b159380950dd14dd8372dc683eddd3dad593d6442a0f95a7e616de2e23a575b06f6217d230cc094d0f640b52bca93d4ebca6abbb1e3adfdca92bf20791f024f0
ssdeep: 12288:xL9dUUfmFinPH52pb9fbbO51aWLI03mNO2G+i+TRpB+k9f:bdUimonvot381a+73LwBTb3V
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T133D4E142F1554697C56B4B307DAED9344A401FAE7EF0C90F12AE321AABB13F2449ED9C
sha3_384: ac39fd682c4275c4a329c519a7159ec5bca681449dee0b6ca552992abc2a9957473c95648c918ebd7e77fbd173a39b18
ep_bytes: b834c65a005064ff3500000000648925
timestamp: 2013-01-08 15:25:14


Version Info:

Comments: Realtek AC97 Audio Sound Manager
CompanyName: Realtek Semiconductor Corp.
FileDescription: Realtek Sound Manager
FileVersion: 5.1.0.30
InternalName: ALSMTray
LegalCopyright: Copyright (c) 2001-2004 Realtek Semiconductor Corp.
LegalTrademarks: 
OriginalFilename: ALSMTray.exe
PrivateBuild: 
ProductName: Realtek Sound Manager
ProductVersion: 5.1.0.29
SpecialBuild: 
Translation: 0x0409 0x04e4

Trojan.Logger.PEC also known as:

BkavW32.AIDetect.malware2
Elasticmalicious (high confidence)
MicroWorld-eScanDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
FireEyeGeneric.mg.81e7c2a40f610b06
ALYacDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
CylanceUnsafe
K7AntiVirusSpyware ( 0055e3db1 )
K7GWSpyware ( 0055e3db1 )
Cybereasonmalicious.40f610
VirITTrojan.Win32.X-Crypt.ZE
CyrenW32/A-e97a6344!Eldorado
tehtrisGeneric.Malware
ESET-NOD32Win32/Spy.VB.NSS
APEXMalicious
ClamAVWin.Trojan.Agent-549864
KasperskyTrojan-Spy.Win32.KeyLogger.agtt
BitDefenderDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
NANO-AntivirusTrojan.Win32.KeyLogger.hnwhui
AvastWin32:Trojan-gen
TencentMalware.Win32.Gencirc.112a97f8
Ad-AwareDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
SophosGeneric ML PUA (PUA)
DrWebTool.PassView.734
ZillyaTrojan.Keylogger.Win32.30519
TrendMicroTROJ_SPNR.35C613
McAfee-GW-EditionPWS-RedNeck
Trapminemalicious.high.ml.score
EmsisoftDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE (B)
SentinelOneStatic AI – Malicious PE
GDataDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
JiangminTrojanSpy.KeyLogger.ngw
AviraTR/Crypt.PEPM.Gen
ArcabitDeepScan:Generic.MSIL.PasswordStealerA.12C3C8DE
ZoneAlarmTrojan-Spy.Win32.KeyLogger.agtt
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win32.Agent.R54823
McAfeeGenericRXAA-AA!81E7C2A40F61
MAXmalware (ai score=88)
VBA32TScope.Trojan.VB
MalwarebytesTrojan.Logger.PEC
TrendMicro-HouseCallTROJ_SPNR.35C613
YandexTrojan.PEPM!iAzh8droU2k
IkarusTrojan-Dropper.Win32.VB
MaxSecureTrojan.Malware.4390431.susgen
FortinetW32/TdvbPack.A!tr
BitDefenderThetaGen:NN.ZexaF.34742.Mi1aaGjAMlhO
AVGWin32:Trojan-gen
CrowdStrikewin/malicious_confidence_90% (D)

How to remove Trojan.Logger.PEC?

Trojan.Logger.PEC removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment