About “Trojan.Win32.Destro” infection

The Trojan.Win32.Destro is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Destro virus can do?

The binary contains an unknown PE section name indicative of packing
Authenticode signature is invalid

How to determine Trojan.Win32.Destro?


File Info:
name: 1DEA8345551E533A7584.mlw
path: /opt/CAPEv2/storage/binaries/2faf0c5f131ede2d731d7bef73da39bb32a7cc5da07041d8b06bae5563c898fc
crc32: 681D792A
md5: 1dea8345551e533a75848587f240a226
sha1: 5e6c329fa9efab735f3705d88486279b53bdd363
sha256: 2faf0c5f131ede2d731d7bef73da39bb32a7cc5da07041d8b06bae5563c898fc
sha512: 26288842ee0b29cfa839095def9e0e3c82e3221ea8e0503acab123f8c350652b60d2cd2fd2e26d979ddd59a79f544746d71c883780cfba5249c1928624696252
ssdeep: 768:dmE+DavOYqAkyYfaPP3lLuzZPKqi1mIakuy02O/7:lvOr7BfaPP3lLuBZi1aby0X/7
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1B2232A95BE658CE7EA52533E80E7C7766B3CF1814E234BA3B730B6344B1369230D9246
sha3_384: 37c3ade565b8a660fc8d80a840b53f47a17a62cdf3f33c5178cd1eb2094c0bc6bf83088637e0b0e539a7d3f809510908
ep_bytes: 83ec1cc7042401000000ff15fc814000
timestamp: 2022-06-29 11:46:39

Version Info:
0: [No Data]

Trojan.Win32.Destro also known as:

Bkav	W32.AIDetect.malware2
Lionic	Trojan.Win32.Destro.4!c
FireEye	Trojan.GenericKD.50536244
McAfee	Artemis!1DEA8345551E
Malwarebytes	Trojan.KillMBR
Sangfor	Trojan.Win32.Killmbr.Vypu
BitDefender	Trojan.GenericKD.50536244
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	a variant of Win32/KillMBR.NGI
Kaspersky	HEUR:Trojan.Win32.Destro.gen
MicroWorld-eScan	Trojan.GenericKD.50536244
Rising	Trojan.KillMBR!8.F58 (CLOUD)
Ad-Aware	Trojan.GenericKD.50536244
Emsisoft	Trojan.GenericKD.50536244 (B)
F-Secure	Trojan.TR/KillMBR.kuqrj
VIPRE	Trojan.GenericKD.50536244
McAfee-GW-Edition	BehavesLike.Win32.Generic.pm
Sophos	Mal/Generic-S
GData	Trojan.GenericKD.50536244
Jiangmin	TrojanDownloader.Paph.gg
Avira	TR/KillMBR.kuqrj
MAX	malware (ai score=82)
Arcabit	Trojan.Generic.D3031F34
ZoneAlarm	HEUR:Trojan.Win32.Destro.gen
Microsoft	Trojan:Win32/Wacatac.B!ml
AhnLab-V3	Trojan/Win.Generic.R501878
ALYac	Trojan.Agent.KillMBR
Tencent	Win32.Trojan.Destro.Edew
MaxSecure	Trojan.Malware.300983.susgen
Fortinet	W32/KillMBR.NGI!tr
AVG	Win32:Trojan-gen
Avast	Win32:Trojan-gen

How to remove Trojan.Win32.Destro?

Trojan.Win32.Destro removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X