Should I remove “Trojan.Mardom.IN.14 (B)”?

The Trojan.Mardom.IN.14 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Mardom.IN.14 (B) virus can do?

Dynamic (imported) function loading detected
Authenticode signature is invalid
Anomalous .NET characteristics

How to determine Trojan.Mardom.IN.14 (B)?


File Info:
name: 43BCF19FF39BBE3B2B05.mlw
path: /opt/CAPEv2/storage/binaries/da029ee245e269093e6e6d28f2972433e8cd7755fbda9392170cc3686096411f
crc32: 8BA94C56
md5: 43bcf19ff39bbe3b2b050d881f462c73
sha1: 5770d581ed0f740182234a741ae05e6965df1ff5
sha256: da029ee245e269093e6e6d28f2972433e8cd7755fbda9392170cc3686096411f
sha512: 9f6b7f8f1d340afb7abd7ac04a337ccb105242e452ea6277c45d915a8ff7293a733614c445ec9d52657d4d99ae75df1f5f961b586580d255b4bf68cac860dfe7
ssdeep: 49152:Y1iJk1ZcRLaGGYbLMLJGasS68dgjh0iLR:
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19836382439FA501AB173EFAA8BE479EADA6FB7733B07645D109003864723981DDC153E
sha3_384: 56b1b16d65a487297c1553c16c393422691fc6391620fe41eccee79ebbfdd74fda08a568f08da6de814168f9d3c9d3ed
ep_bytes: ff250020400000000000000000000000
timestamp: 2022-04-25 19:19:20

Version Info:
Translation: 0x0000 0x0514
ProductName: j2mo59znyBw2HNE99Ia
CompanyName: eTdDEOSLpeu
InternalName: cgRmsHQCsvNaBa.exe
LegalCopyright: iHkTZy
Comments: KXPvrjk
OriginalFilename: PDyAGe5OX21ixhGBC.exe
ProductVersion: 301.545.95.522
FileVersion: 281.753.189.688

Trojan.Mardom.IN.14 (B) also known as:

Bkav	W32.AIDetectNet.01
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Trojan.Mardom.IN.14
FireEye	Generic.mg.43bcf19ff39bbe3b
McAfee	Artemis!43BCF19FF39B
Cylance	Unsafe
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_100% (D)
Arcabit	Trojan.Mardom.IN.14
Cyren	W32/MSIL_Kryptik.HCY.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of MSIL/Kryptik.ACRB
APEX	Malicious
Kaspersky	HEUR:Trojan-Spy.MSIL.Stealer.gen
BitDefender	Gen:Trojan.Mardom.IN.14
Avast	Win32:TrojanX-gen [Trj]
Ad-Aware	Gen:Trojan.Mardom.IN.14
TACHYON	Trojan-Spy/W32.DN-InfoStealer.4961280
Emsisoft	Gen:Trojan.Mardom.IN.14 (B)
DrWeb	Trojan.PackedNET.215
McAfee-GW-Edition	Artemis
Sophos	ML/PE-A
SentinelOne	Static AI – Malicious PE
Avira	TR/Dropper.MSIL.Gen
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	MSIL.Trojan.PSE.B1ORP9
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win.Mardom.C5103216
Acronis	suspicious
ALYac	Gen:Trojan.Mardom.IN.14
MAX	malware (ai score=85)
Malwarebytes	Trojan.Crypt
Fortinet	MSIL/Kryptik.ACRB!tr
AVG	Win32:TrojanX-gen [Trj]
Cybereason	malicious.ff39bb

How to remove Trojan.Mardom.IN.14 (B)?

Trojan.Mardom.IN.14 (B) removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X