Should I remove “Trojan.Mardom.IN.11”?

The Trojan.Mardom.IN.11 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Mardom.IN.11 virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Trojan.Mardom.IN.11?


File Info:
name: D07DECE8BD20E573A3B1.mlw
path: /opt/CAPEv2/storage/binaries/5aca3ab5757936049629850a6e8d1f7a47a1d3bb8ec7b475355ecfe06138a07e
crc32: 79CFBB43
md5: d07dece8bd20e573a3b1db5ec66aa32b
sha1: 0853f125d42a01e1995297228063916cab021dc1
sha256: 5aca3ab5757936049629850a6e8d1f7a47a1d3bb8ec7b475355ecfe06138a07e
sha512: d4ffcf67645340cc5a965ecfc6b3774e9de9cb67c3d044a953cab86db998e653a6c2b8593ae0467b41d1b1df6bcbcacc7e8867a97063aa056678a1e219d16e84
ssdeep: 49152:o1iJk1ZcRLaGGYbLMLJGasS68dgjh0iLR:
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15436382439FA501AB173EFAA8BE479EADA6FB7733B07645D109003864723981DDC153E
sha3_384: 98c7d253360132f93f25c680a9587c1e9e8de3071a42084830c2d58b2414dc2134182275837d027838beec388ead8ab4
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-04-25 19:19:20

Version Info:
Translation: 0x0000 0x0514
ProductName: Mx0OBZF0b7aENDwkc
CompanyName: g6smD
InternalName: gRUGK6epUss.exe
LegalCopyright: lSyV8WJhVqgGfkU
Comments: bj7WkypzF9j0yAxsw79rsT7PjX9
OriginalFilename: fNeedicf.exe
ProductVersion: 93.18.460.630
FileVersion: 858.158.91.413

Trojan.Mardom.IN.11 also known as:

Bkav	W32.AIDetectNet.01
Lionic	Trojan.Win32.Mardom.4!c
DrWeb	Trojan.PackedNET.215
MicroWorld-eScan	Gen:Trojan.Mardom.IN.11
FireEye	Generic.mg.d07dece8bd20e573
McAfee	Artemis!D07DECE8BD20
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
Cybereason	malicious.8bd20e
BitDefenderTheta	Gen:NN.ZemsilF.34606.@p0@a4rmErg
Cyren	W32/MSIL_Kryptik.HCY.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of MSIL/Kryptik.ACRB
TrendMicro-HouseCall	TROJ_GEN.R002H0CDQ22
Kaspersky	HEUR:Trojan-Spy.MSIL.Stealer.gen
BitDefender	Gen:Trojan.Mardom.IN.11
Avast	Win32:TrojanX-gen [Trj]
Tencent	Msil.Trojan.Kryptik.Wozl
Ad-Aware	Gen:Trojan.Mardom.IN.11
Sophos	Mal/Generic-S
McAfee-GW-Edition	BehavesLike.Win32.Dropper.rt
Emsisoft	Gen:Trojan.Mardom.IN.11 (B)
Ikarus	Trojan.MSIL.Crypt
GData	Gen:Trojan.Mardom.IN.11
Avira	TR/Dropper.MSIL.Gen
Arcabit	Trojan.Mardom.IN.11
ViRobot	Trojan.Win32.Z.Mardom.4961280.AA
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Mardom.C5103216
Acronis	suspicious
ALYac	Gen:Trojan.Mardom.IN.11
MAX	malware (ai score=86)
Malwarebytes	Trojan.Crypt
APEX	Malicious
Yandex	Trojan.Kryptik!M7J01HqKG2w
SentinelOne	Static AI – Malicious PE
Fortinet	MSIL/Kryptik.ACRB!tr
AVG	Win32:TrojanX-gen [Trj]
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Trojan.Mardom.IN.11?

Trojan.Mardom.IN.11 removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X