Trojan

Trojan.Win32.EquationDrug (file analysis)

Malware Removal

The Trojan.Win32.EquationDrug is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.EquationDrug virus can do?

  • Anomalous binary characteristics

How to determine Trojan.Win32.EquationDrug?



File Info:

crc32: E264A419
md5: 59b41879f4dba70917ef4cea3cfb50c9
name: 59B41879F4DBA70917EF4CEA3CFB50C9.mlw
sha1: 346ce8cc488a5f10b9393dfb15c69cfb920b80a4
sha256: 78a5e9fcb69d855733ce27a495bfd7374ba5ebe317147966a2a25b2ccba6d60c
sha512: 892be8759bf8c5aa549ff6e7fb0335ba85bb71077a200dc91a7bffaa95447a1aa4337489b8e8a903706cfd163f98f1d26e993dfa377ea313960f52616a8514b2
ssdeep: 768:wAKarAfmluGS5ERN0Y+u2pS2nVom+sB/D9t:F6b5q09pT
type: PE32 executable (console) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan.Win32.EquationDrug also known as:

LionicTrojan.Win32.EquationDrug.4!c
Elasticmalicious (high confidence)
DrWebTool.Equation.17
CAT-QuickHealTrojan.MauvaiseRI.S5247508
ALYacTrojan.GenericKD.34821719
CylanceUnsafe
SangforTrojan.Win32.Eqtonex.C
BitDefenderTrojan.GenericKD.34821719
Cybereasonmalicious.9f4dba
CyrenW32/ShadowBroker.A.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
CynetMalicious (score: 100)
KasperskyHEUR:Trojan.Win32.EquationDrug.gen
AlibabaTrojan:Win32/Eqtonex.9efa21f5
NANO-AntivirusVirus.Win32.Gen.ccmw
MicroWorld-eScanTrojan.GenericKD.34821719
TencentHackTool.Win32.ShadowB.b
Ad-AwareTrojan.GenericKD.34821719
SophosMal/Generic-S + Mal/Dampatch-A
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionBehavesLike.Win32.Infected.mh
FireEyeGeneric.mg.59b41879f4dba709
EmsisoftTrojan.GenericKD.34821719 (B)
eGambitTrojan.Generic
Antiy-AVLTrojan/Generic.ASMalwS.30F97D5
MicrosoftTrojan:Win32/Eqtonex.C
ZoneAlarmHEUR:Trojan.Win32.EquationDrug.gen
GDataTrojan.GenericKD.34821719
McAfeeGenericRXAA-AA!59B41879F4DB
MAXmalware (ai score=86)
VBA32Trojan.EquationDrug
PandaGeneric Suspicious
RisingMalware.Heuristic!ET#91% (RDMK:cmRtazpvTDVpi5DAEi+UCV9tLjWU)
IkarusTrojan.Exploit.Equation
FortinetW32/CoinMiner.2438!tr

How to remove Trojan.Win32.EquationDrug?

Trojan.Win32.EquationDrug removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment