Categories: SpyTrojan

Trojan-Spy.Win32.Stealer.cllh removal guide

The Trojan-Spy.Win32.Stealer.cllh is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Trojan-Spy.Win32.Stealer.cllh virus can do?

Sample contains Overlay data
Yara rule detections observed from a process memory dump/dropped files/CAPE
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid
CAPE detected the RedLine malware family

How to determine Trojan-Spy.Win32.Stealer.cllh?


File Info:
name: 82AB855D2D249464B0E6.mlwpath: /opt/CAPEv2/storage/binaries/ebf9b0cc42300ce226280c1cfe3f8b7dd1a9a5f2f409fec1fabead70b2cca41bcrc32: CCC2AC1Emd5: 82ab855d2d249464b0e6dea7aa734c27sha1: cb3c2d3c3324f8569c32bb62bd440660c4717d89sha256: ebf9b0cc42300ce226280c1cfe3f8b7dd1a9a5f2f409fec1fabead70b2cca41bsha512: 08becf63373aa054a8101afe92f8fd451df48826f73f6a9d5ef41729d7f44a82eb918166a4096bd8c9e11ad59890ac80094dd14cb1567d111241cd89d95f66fassdeep: 24576:qnKCiAZQYhYg5OMMcMgvf5JlltTen7tRFdfSMsVFR3hWzN0jLEPN5irl3RuQ553r:DJA5KngLxhWzN0jY7irl3ftype: PE32 executable (console) Intel 80386, for MS Windowstlsh: T171C51A039A8B0E75DDC23BB461CB633AA734FD30CA3A9B7BF609C53559532D4681A742sha3_384: 4f40bb600c9d37e6a4d9e45c15e1d736bc4ada7e3a6e23b3d1fd629cb007af7e61685b31e9677dab2b4b97887cfc3169ep_bytes: 83ec0cc705b8e3510000000000e8deb6timestamp: 2022-08-24 23:19:09
Version Info:
0: [No Data]

Trojan-Spy.Win32.Stealer.cllh also known as:

Lionic	Trojan.Win32.Stealer.12!c
MicroWorld-eScan	Trojan.GenericKD.61493116
FireEye	Trojan.GenericKD.61493116
ALYac	Trojan.GenericKD.61493116
Cylance	Unsafe
Sangfor	Spyware.Win32.Agent.Vuwb
K7AntiVirus	Trojan ( 00595a1c1 )
BitDefender	Trojan.GenericKD.61493116
K7GW	Trojan ( 00595a1c1 )
Cyren	W32/Trojan.HLPX-5019
Symantec	ML.Attribute.HighConfidence
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/Kryptik.HQDK
Cynet	Malicious (score: 100)
Paloalto	generic.ml
Kaspersky	Trojan-Spy.Win32.Stealer.cllh
Alibaba	TrojanSpy:Win32/Stealer.62d71611
Rising	Spyware.Convagent!8.12330 (TFE:5:vyWeQ8A22bD)
Ad-Aware	Trojan.GenericKD.61493116
Sophos	Mal/Generic-S
DrWeb	Trojan.PWS.Stealer.32450
VIPRE	Trojan.GenericKD.61493116
TrendMicro	TrojanSpy.Win32.REDLINE.YXCHYZ
McAfee-GW-Edition	Artemis!Trojan
Emsisoft	Trojan.GenericKD.61493116 (B)
Ikarus	Trojan.Win32.Krypt
MAX	malware (ai score=83)
Antiy-AVL	Trojan/Generic.ASMalwS.50E8
Microsoft	Trojan:Win32/Sabsik.FL.B!ml
GData	Win32.Trojan.PSE.1KEPK3Q
Google	Detected
AhnLab-V3	Trojan/Win.Generic.R512474
McAfee	Artemis!82AB855D2D24
VBA32	Trojan.MSIL.InfoStealer.gen.U
TrendMicro-HouseCall	TrojanSpy.Win32.REDLINE.YXCHYZ
MaxSecure	Trojan.Malware.121218.susgen
BitDefenderTheta	Gen:NN.ZexaF.34606.B!Z@aW1c5Fi
AVG	Win32:Evo-gen [Trj]
Avast	Win32:Evo-gen [Trj]