Trojan

Trojan.Win32.Diztakun.bruy removal instruction

Malware Removal

The Trojan.Win32.Diztakun.bruy is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Diztakun.bruy virus can do?

  • A file was accessed within the Public folder.
  • Sample contains Overlay data
  • Uses Windows utilities for basic functionality
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the shellcode patterns malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan.Win32.Diztakun.bruy?



File Info:

name: 147E519F027A67A44E1B.mlw
path: /opt/CAPEv2/storage/binaries/3246c878f4ba967a039a8313bc1da2bd59f1131d1bbebf1a2917aa4512ad686b
crc32: 39859C0E
md5: 147e519f027a67a44e1bcdcb58361441
sha1: 91bc6c3deabd7f529bf49bfd88186519f8b24b0f
sha256: 3246c878f4ba967a039a8313bc1da2bd59f1131d1bbebf1a2917aa4512ad686b
sha512: 93dc60814fa67d711099d4964f219fef4f9d3e967f6860bf4b4a862aaf8657bfad9bf6edbf065cffafd194b9bc5487fafa765d0f3664d6a277b8856da183a1f6
ssdeep: 196608:itanIq60cT+0Fsx8zqrgdOQ3i/vRqK5gIWzuOl+8NxYAK2KdRKXb6sUphx9y03:BIwj8dqKR25LaIAuOl+ixYAK2KdRKOn5
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16DB63319F1818133E8911275C99746F5B965EF92EF3DE0CBA3EA280D1C7298E36342DD
sha3_384: e2bfd1fc0540582c45e03521192a954171349aa973fe8d21a14199eb38c6e31b224eb7ef99e1fb186c459e4df221ffd7
ep_bytes: 558bec83c4f0b888534200e824f2fdff
timestamp: 1992-06-19 22:22:17


Version Info:

Comments: 
CompanyName: Supernova, Ltd                                              
FileDescription: GamesSetup 69.420 Installation                              
FileVersion: 69.420              
LegalCopyright: Supernova, Ltd                                                                                      
Translation: 0x0409 0x04e4

Trojan.Win32.Diztakun.bruy also known as:

LionicTrojan.Win32.Diztakun.4!c
CynetMalicious (score: 100)
SkyhighBehavesLike.Win32.Dropper.vc
McAfeeArtemis!147E519F027A
Cylanceunsafe
SangforTrojan.Win32.Diztakun.Va9t
CrowdStrikewin/malicious_confidence_60% (D)
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyTrojan.Win32.Diztakun.bruy
AlibabaTrojan:Win32/Diztakun.27e2be42
AvastFileRepMalware [Trj]
ZoneAlarmTrojan.Win32.Diztakun.bruy
AhnLab-V3Malware/Gen.Generic.C4304455
PandaTrj/Chgt.AD
MaxSecureTrojan-Ransom.Win32.Crypmod.zfq
AVGFileRepMalware [Trj]
Cybereasonmalicious.deabd7
DeepInstinctMALICIOUS

How to remove Trojan.Win32.Diztakun.bruy?

Trojan.Win32.Diztakun.bruy removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment