Trojan.Otfrem malicious file

The Trojan.Otfrem is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Otfrem virus can do?

Authenticode signature is invalid
Anomalous binary characteristics

How to determine Trojan.Otfrem?


File Info:
name: 8AA9DE158A4E4622C7A2.mlw
path: /opt/CAPEv2/storage/binaries/3d9168dbb97eb228c47634b73341e9c3a7471b4f5dd4b757fd34901f117d433d
crc32: 0E3751C1
md5: 8aa9de158a4e4622c7a29a9817b1aaac
sha1: e72b57d9fa59140be4dca9899f7631c0926ded21
sha256: 3d9168dbb97eb228c47634b73341e9c3a7471b4f5dd4b757fd34901f117d433d
sha512: 3a1359d8303667394b9e3aa4f791d0532c27761381c1b71fd5c72f278d0e1f689bf540be23b21dd4a36fd719a6229528626215a183de45cfa221c90601ad5687
ssdeep: 1536:S+jE+132lhisKZdltWeks9Ru6nsQsctXamov13IyH6Ll4+aEpOwd/VxDy/5X2++N:LjL4wsKNti+4v13IyalbpDCwt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1BFD33912E660A416F4068471F975D5BEB91A2CB256C2CC03F749AF9039B06D3F6F8B1B
sha3_384: 74b6f7b3b492125e9685b507065b03b4cf6f2891f3670d96f92051354b70f099ecad9ab8c1de42c16caae54266b49b99
ep_bytes: 04ecfd019cd50885d20bb5f406b0f700
timestamp: 2008-11-16 03:29:47

Version Info:
0: [No Data]

Trojan.Otfrem also known as:

Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.38959977
McAfee	GenericRXRH-BN!8AA9DE158A4E
Cylance	Unsafe
CrowdStrike	win/malicious_confidence_100% (W)
K7GW	Trojan ( 00590fc41 )
K7AntiVirus	Trojan ( 00590fc41 )
Cyren	W32/Barys.AU.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/Otfrem.C
APEX	Malicious
ClamAV	Win.Virus.Otfrem-9939925-0
BitDefender	Trojan.GenericKD.38959977
NANO-Antivirus	Trojan.Win32.Autoruner.jkndwc
Avast	Win32:DropperX-gen [Drp]
Ad-Aware	Trojan.GenericKD.38959977
Emsisoft	Trojan.GenericKD.38959977 (B)
Baidu	Win32.Trojan.Otfrem.b
McAfee-GW-Edition	BehavesLike.Win32.Generic.ch
FireEye	Generic.mg.8aa9de158a4e4622
Sophos	ML/PE-A
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Lunam.x
Antiy-AVL	Trojan/Generic.ASMalwS.34FF56E
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
Arcabit	Trojan.Generic.D2527B69
GData	Trojan.GenericKD.38959977
Cynet	Malicious (score: 100)
VBA32	Trojan.Otfrem
ALYac	Trojan.GenericKD.38959977
MAX	malware (ai score=82)
Malwarebytes	Malware.AI.1715724222
Rising	Trojan.Generic@AI.99 (RDMK:cmRtazotV9TD+wKulcGIoRX8ji7J)
Ikarus	Virus.Win32.Otfrem
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/Otfrem.C
AVG	Win32:DropperX-gen [Drp]
Cybereason	malicious.9fa591

How to remove Trojan.Otfrem?

Trojan.Otfrem removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X