Trojan

Trojan.Win32.Agentb.lljc removal

Malware Removal

The Trojan.Win32.Agentb.lljc is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Agentb.lljc virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the embedded win api malware family
  • Created a service that was not started
  • Uses suspicious command line tools or Windows utilities
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.Win32.Agentb.lljc?



File Info:

name: 96C4DFBDDEC9361D035C.mlw
path: /opt/CAPEv2/storage/binaries/9ae1049e0579fd8ef08a03d050571ff770d1c8957ddbf210e3257dd88e08c23d
crc32: 93B008E5
md5: 96c4dfbddec9361d035ce2ea9c1e1947
sha1: aa5f64136a082e47cf369094b8a564d70b92bc1f
sha256: 9ae1049e0579fd8ef08a03d050571ff770d1c8957ddbf210e3257dd88e08c23d
sha512: 11333fdf5a1dc2ce5907fe7146d9d9a155422b45935d0be06117910fe27a4638ac47dcc6610a0c1dff3453920ba1cf2a0216dfa5fa5c61d189426be123848210
ssdeep: 98304:KixbRFQ7Mpnke2rF5mopblfL947/3ZUxyBkU:fxbQQpQdbNc32yBh
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1E016336316805C32F29EA7F77E2DC4A4C5025E28563C04CE777C896A8A5A371295FBCF
sha3_384: b61fc17555f70c95e5d59a681e8c6c90ccd56af3a264ec1bcfcf487220acd16d1cae4335b1d77e8b6840bc4159ce4fce
ep_bytes: 558bec83c4d453565733c08945f08945
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: This installation was built with Inno Setup: http://www.innosetup.com
CompanyName:                                                             
FileDescription: PCI Device Checker Setup                                    
FileVersion:                     
InternalName: 
OriginalFilename: 
ProductName: 
ProductVersion: 
Translation: 0x0409 0x04e4

Trojan.Win32.Agentb.lljc also known as:

BkavW32.Common.A1685BEB
LionicTrojan.Win32.Agentb.X!c
AVGWin32:Malware-gen
DrWebTrojan.Siggen23.38836
MicroWorld-eScanTrojan.GenericKD.71192441
SkyhighBehavesLike.Win32.ObfuscatedPoly.wc
McAfeeArtemis!96C4DFBDDEC9
Cylanceunsafe
VIPRETrojan.GenericKD.71192441
SangforDropper.Win32.Malgent.Vjyp
K7AntiVirusTrojan ( 005722f11 )
AlibabaTrojanDropper:Win32/Malgent.9352a4f7
K7GWTrojan ( 005722f11 )
VirITTrojan.Win32.Genus.UWV
SymantecTrojan.Gen.MBT
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/TrojanDropper.Agent.SLC
CynetMalicious (score: 100)
KasperskyTrojan.Win32.Agentb.lljc
BitDefenderTrojan.GenericKD.71192441
NANO-AntivirusTrojan.Win32.Nekark.khrmno
EmsisoftTrojan.GenericKD.71192441 (B)
F-SecureTrojan.TR/AD.Nekark.kxltq
TrendMicroTrojan.Win32.SOCKSSYSTEMZ.YXEALZ
Trapminemalicious.moderate.ml.score
FireEyeTrojan.GenericKD.71192441
SophosMal/Generic-S
JiangminTrojan.Ekstak.cimi
WebrootW32.Malware.Gen
GoogleDetected
AviraTR/AD.Nekark.kxltq
MAXmalware (ai score=100)
Antiy-AVLTrojan/Win32.Agentb
KingsoftWin32.Trojan.Agentb.a
MicrosoftTrojan:Win32/Malgent!MSR
XcitiumMalware@#24spqasz6yxrr
ArcabitTrojan.Generic.D43E4F79
ZoneAlarmTrojan.Win32.Agentb.lljc
GDataWin32.Trojan.PSE.SRMNXW
VaristW32/Agent.RZLD-8422
AhnLab-V3Malware/Win.Generic.C5572700
ALYacTrojan.GenericKD.71192441
DeepInstinctMALICIOUS
VBA32Trojan.ICLoader
MalwarebytesFloxif.Virus.FileInfector.DDS
PandaTrj/Chgt.AD
TrendMicro-HouseCallTrojan.Win32.SOCKSSYSTEMZ.YXEALZ
TencentWin32.Trojan.Agentb.Pnkl
YandexTrojan.Agentb!HC3QvkJvhFk
IkarusTrojan-Dropper.Win32.Agent
MaxSecureTrojan.Malware.222866669.susgen
FortinetW32/Agent.SLC!tr
Cybereasonmalicious.ddec93
AvastWin32:Malware-gen
alibabacloudTrojan[dropper]:Win/Agentb.lljc

How to remove Trojan.Win32.Agentb.lljc?

Trojan.Win32.Agentb.lljc removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment