Trojan

Trojan.Win32.Agent.xbnasm removal guide

Malware Removal

The Trojan.Win32.Agent.xbnasm is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Agent.xbnasm virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan.Win32.Agent.xbnasm?



File Info:

name: 4024E1811547BB566DC9.mlw
path: /opt/CAPEv2/storage/binaries/d4d5a73136c74053eb9bdb51c31fafc45f769d254aa2ea51ec8bea4b956278d2
crc32: EB2FD5A1
md5: 4024e1811547bb566dc9d70e6782941d
sha1: 934734343748d249f60b2c94397b949ff2ad9f27
sha256: d4d5a73136c74053eb9bdb51c31fafc45f769d254aa2ea51ec8bea4b956278d2
sha512: 7d2815ccaf55d2a3373a3809d6d928aabc69557bb6cc9024288b022dcc03306da4f292081fc2b32b2ff8c176c707632a08b4a31c35f759e72b50bd4ad6ebc0c0
ssdeep: 3072:ZmY43Fov3GNAduKDZWiwF88Nz0lvnqnxius:ZmVoQ8uKDk8sz0lPqnxiu
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15C048F628970BB13E951093517E06BFB801D3C2F4BE5060A7CADDA5F3763D9A349FA42
sha3_384: ea37a6572053b0f17011ce6ce677c6cb3176cb558c542e52016049dde2a4d77824c6bcce7e953b47dcf45880fb49c2bf
ep_bytes: 68c0914200e8f0ffffffcd0000000000
timestamp: 2019-04-26 10:28:09


Version Info:

Translation: 0x0804 0x04b0
Com๰anyName: aa
ProductName: Kawaii-Unicorn
FileVersion: 1.00
ProductVersion: 1.00
InternalName: Kawaii-Unicorn
OriginalFilename: Kawaii-Unicorn.exe

Trojan.Win32.Agent.xbnasm also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Zusy.539122
FireEyeGeneric.mg.4024e1811547bb56
CAT-QuickHealTrojan.MuldVMF.S21469993
SkyhighBehavesLike.Win32.Generic.ct
McAfeeGenericRXHC-SS!4024E1811547
MalwarebytesGeneric.Malware.AI.DDS
VIPREGen:Variant.Zusy.539122
SangforSuspicious.Win32.Save.vb
K7AntiVirusP2PWorm ( 00581a9e1 )
K7GWP2PWorm ( 00581a9e1 )
BitDefenderThetaAI:Packer.1DDCF60A20
VirITTrojan.Win32.VBUCornT.DRP
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/GenKryptik.FNGV
APEXMalicious
ClamAVWin.Malware.Midie-6847893-0
KasperskyTrojan.Win32.Agent.xbnasm
BitDefenderGen:Variant.Zusy.539122
NANO-AntivirusTrojan.Win32.Banker1.fnwqkb
AvastWin32:VB-AJKU [Trj]
TencentTrojan.Win32.VB.ko
TACHYONTrojan/W32.VB-Agent.188487.B
EmsisoftGen:Variant.Zusy.539122 (B)
F-SecureTrojan.TR/Crypt.XPACK.Gen
DrWebTrojan.MulDrop17.61497
SophosMal/VB-AQT
IkarusTrojan.Crypt
GDataWin32.Trojan.VBClone.B
JiangminTrojan.VB.aqyg
GoogleDetected
AviraTR/Crypt.XPACK.Gen
VaristW32/VB_Troj.J.gen!Eldorado
Antiy-AVLTrojan/Win32.Wacatac.b
Kingsoftmalware.kb.a.996
ArcabitTrojan.Zusy.D839F2
ZoneAlarmTrojan.Win32.Agent.xbnasm
MicrosoftTrojanDropper:Win32/Muldrop.V!MTB
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.R252862
VBA32SScope.Trojan.VB
ALYacGen:Variant.Zusy.539122
MAXmalware (ai score=86)
Cylanceunsafe
RisingTrojan.VBClone!1.E032 (CLASSIC)
YandexTrojan.Agent!3zveFI5ozdc
SentinelOneStatic AI – Malicious PE
MaxSecureVirus.W32.GenericML.xnet
FortinetW32/VBClone.D!tr
AVGWin32:VB-AJKU [Trj]
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Agent.xbnasm?

Trojan.Win32.Agent.xbnasm removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment