Should I remove “Trojan-Spy.Win32.Zbot.wmvg”?

The Trojan-Spy.Win32.Zbot.wmvg is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan-Spy.Win32.Zbot.wmvg virus can do?

At least one process apparently crashed during execution
The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Trojan-Spy.Win32.Zbot.wmvg?


File Info:
name: A8520059E893B8E548E5.mlw
path: /opt/CAPEv2/storage/binaries/c2d06c885ab9a4288f5d18f1f00427a4b4b57a7afab101ae63c4350ed0d239fd
crc32: 58A46710
md5: a8520059e893b8e548e5e4a2fd5edfdc
sha1: 3caca71f315529ebbcabffc1c4db549b3de4e51f
sha256: c2d06c885ab9a4288f5d18f1f00427a4b4b57a7afab101ae63c4350ed0d239fd
sha512: 5b6809048ba67452abfb09b091c6371f8c573471cd4b02a4fb2a011ab951e82d2d2036a75636753a6a50e435846a6bdbabb7d22c9ea000a62facceaca14f5e34
ssdeep: 1536:ifedawngPvqXjkH0TRuddO4OBz5Kbjtk4yhc5jnNfsHEHuw2lvh:CcawgnqXU0TJUb5k+5jnNfmEHch
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18DA37D32B9E02CF3D99147F486543A33A37BE9301839A9D7D3548EEB1E54582E62D783
sha3_384: d62e45f77bcd49401625c94dc42d3e377f7963fb6e3b71c1b1b82ef689a99851c30b2794f2203de98f01b1a71b91c4ea
ep_bytes: 558bec81ec40040000e8a90d0000e808
timestamp: 2008-06-12 13:53:54

Version Info:
0: [No Data]

Trojan-Spy.Win32.Zbot.wmvg also known as:

Bkav	W32.AIDetect.malware1
Lionic	Trojan.Win32.Zbot.kZzj
Elastic	malicious (high confidence)
DrWeb	Trojan.PWS.Panda.114
MicroWorld-eScan	Trojan.Spy.Zeus.C
FireEye	Generic.mg.a8520059e893b8e5
CAT-QuickHeal	Trojanspy.Zbot.20720
McAfee	PWS-Zbot.gen.ajl
Cylance	Unsafe
Zillya	Downloader.FraudLoad.Win32.3074
Sangfor	Trojan.Win32.Save.a
Alibaba	TrojanSpy:Win32/SScope.0a76705d
Cybereason	malicious.9e893b
Arcabit	Trojan.Spy.Zeus.C
BitDefenderTheta	Gen:NN.ZexaF.34212.guW@a07vfXo
VirIT	Trojan.Win32.Panda.EK
Cyren	W32/Zbot.AF.gen!Eldorado
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/Spy.Zbot.JF
TrendMicro-HouseCall	TSPY_ZBOT.SMLF
ClamAV	Win.Spyware.Zbot-9841872-0
Kaspersky	Trojan-Spy.Win32.Zbot.wmvg
BitDefender	Trojan.Spy.Zeus.C
NANO-Antivirus	Trojan.Win32.Panda.ifgd
Avast	Sf:Zbot-CQ [Trj]
Tencent	Win32.Trojan-spy.Zbot.Lmkg
Ad-Aware	Trojan.Spy.Zeus.C
Sophos	Mal/Generic-R + Troj/Zbot-HJ
Comodo	TrojWare.Win32.TrojanSpy.Zbot.Gen@hcki0
VIPRE	Trojan-Spy.Win32.Zbot.gen (v)
TrendMicro	TSPY_ZBOT.SMLF
McAfee-GW-Edition	BehavesLike.Win32.ZBot.cm
Emsisoft	Trojan.Spy.Zeus.C (B)
SentinelOne	Static AI – Malicious PE
Jiangmin	TrojanDownloader.FraudLoad.gge
Webroot	W32.Malware.Gen
Avira	TR/Patched.Ren.Gen
MAX	malware (ai score=100)
Antiy-AVL	Trojan[Downloader]/Win32.FraudLoad
Microsoft	PWS:Win32/Zbot.gen!R
ViRobot	Trojan.Win32.Downloader.428032.E
ZoneAlarm	HEUR:Trojan.Win32.Generic
GData	Trojan.Spy.Zeus.C
Cynet	Malicious (score: 100)
AhnLab-V3	Spyware/Win32.Agent.R45485
Acronis	suspicious
VBA32	SScope.Trojan.Bofa
ALYac	Trojan.Spy.Zeus.C
APEX	Malicious
Rising	Trojan.Win32.Ntos.vt (CLOUD)
Yandex	Trojan.DL.FraudLoad!z/T8uimn88M
Ikarus	Trojan-Spy.Zeus
MaxSecure	Trojan.Malware.1093758.susgen
Fortinet	W32/Zbot.BCW!tr.bdr
AVG	Sf:Zbot-CQ [Trj]
Panda	Generic Malware
CrowdStrike	win/malicious_confidence_90% (D)

How to remove Trojan-Spy.Win32.Zbot.wmvg?

Trojan-Spy.Win32.Zbot.wmvg removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X