Trojan

Trojan-PSW.Win32.Azorult.adgt removal guide

Malware Removal

The Trojan-PSW.Win32.Azorult.adgt is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan-PSW.Win32.Azorult.adgt virus can do?

  • Executable code extraction
  • Attempts to connect to a dead IP:Port (1 unique times)
  • Creates RWX memory
  • Possible date expiration check, exits too soon after checking local time
  • The binary likely contains encrypted or compressed data.
  • Attempts to modify proxy settings
  • Collects information to fingerprint the system
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan-PSW.Win32.Azorult.adgt?



File Info:

crc32: 4219C7C6
md5: cc1753f318011f20fca9a2be92e30115
name: parlo.exe
sha1: 118f1f2a62daf3835a872884b12a7356d2072208
sha256: 608ec28dc107b24a621a827a9cbae75aede1a3b75e3aa97d51bf089aace3f741
sha512: 283e365494e459e697937f2c31862d2316fb5bef03c2f8c6e630ef23758aebafb7c8c3a95b16c0236b62f6edc313d8a9eba9976d59710c68afdcc57945ec3423
ssdeep: 6144:uaafG8kGIH7p9Tumgq20I2pgsDkeay0w77ta9j3gxlmr:u5G8BIH7raFKFkuf77U974mr
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: Copyright xa9 2013. All rights reserved. Qualcomm Ventures
InternalName: ReducedScript
FileVersion: 5.4.2.9
CompanyName: Qualcomm Ventures
FileDescription: Technologyethical Admin
LegalTrademarks: Copyright xa9 2013. All rights reserved. Qualcomm Ventures
Comments: Technologyethical Admin
ProductName: ReducedScript
Languages: English
ProductVersion: 5.4.2.9
PrivateBuild: 5.4.2.9
OriginalFilename: ReducedScript.exe
Translation: 0x0409 0x04b0

Trojan-PSW.Win32.Azorult.adgt also known as:

MicroWorld-eScanTrojan.GenericKD.41930152
FireEyeGeneric.mg.cc1753f318011f20
CAT-QuickHealTrojan.GenericRI.S8512005
McAfeeRDN/Generic.gmq
CylanceUnsafe
VIPREWin32.Malware!Drop
AegisLabTrojan.Win32.Azorult.i!c
SangforMalware
K7AntiVirusTrojan ( 00559b781 )
BitDefenderTrojan.GenericKD.41930152
K7GWTrojan ( 00559b781 )
Cybereasonmalicious.a62daf
TrendMicroMal_HPGen-37b
F-ProtW32/Azorult.M
SymantecTrojan.Gen.MBT
APEXMalicious
Paloaltogeneric.ml
GDataWin32.Trojan-Stealer.Azorult.4G34V4
KasperskyTrojan-PSW.Win32.Azorult.adgt
AlibabaTrojanPSW:Win32/Azorult.04888995
NANO-AntivirusTrojan.Win32.Azorult.gdmaqz
RisingStealer.Azorult!8.11176 (KTSE)
Endgamemalicious (high confidence)
SophosMal/Generic-L
ComodoMalware@#tp8la3plwblv
DrWebTrojan.PWS.Stealer.26518
ZillyaTrojan.Azorult.Win32.4
Invinceaheuristic
McAfee-GW-EditionBehavesLike.Win32.Generic.fc
EmsisoftTrojan.GenericKD.41930152 (B)
IkarusTrojan-Ransom.GandCrab
CyrenW32/Trojan.FPUO-8234
JiangminTrojan.PSW.Azorult.fgq
WebrootW32.Malware.Gen
AviraTR/Kryptik.qydam
MAXmalware (ai score=100)
Antiy-AVLTrojan[PSW]/Win32.Azorult
ArcabitTrojan.Generic.D27FCDA8
ZoneAlarmTrojan-PSW.Win32.Azorult.adgt
MicrosoftTrojan:Win32/Skeeyah.A!MTB
AhnLab-V3Win-Trojan/Gandcrab04.Exp
Acronissuspicious
VBA32BScope.Trojan.Propagate
ALYacSpyware.Infostealer.Azorult
Ad-AwareTrojan.GenericKD.41930152
MalwarebytesSpyware.AzorUlt
PandaTrj/WLT.E
ZonerTrojan.Win32.84992
ESET-NOD32Win32/PSW.Delf.OSF
TrendMicro-HouseCallMal_HPGen-37b
SentinelOneDFI – Malicious PE
MaxSecureTrojan.Malware.73889970.susgen
FortinetW32/Azorult.ADGT!tr.pws
BitDefenderThetaGen:NN.ZexaF.33550.yu0@aCCvy@ei
AVGOther:Malware-gen [Trj]
AvastOther:Malware-gen [Trj]
CrowdStrikewin/malicious_confidence_90% (W)
Qihoo-360Win32/Trojan.PSW.269

How to remove Trojan-PSW.Win32.Azorult.adgt?

Trojan-PSW.Win32.Azorult.adgt removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment