Trojan

Trojan.Win32.Shelma.benz (file analysis)

Malware Removal

The Trojan.Win32.Shelma.benz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.Shelma.benz virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Trojan.Win32.Shelma.benz?



File Info:

crc32: 54FD656C
md5: 97ccf01c697b21b49a3170ef270a4a33
name: 97CCF01C697B21B49A3170EF270A4A33.mlw
sha1: b7783670f5cb93c6de6b8b36097c7cebc74f8157
sha256: cab05ce368c7b0c5877be0192555c1e73a9d4e18dce245770cba95115c08e026
sha512: 1632202058cc9f8833c643837a1c2a1ae2d7c79ed734828d4b4631c61312d073f1ba7d6fbdbbf08abdbe89c665c6006c6013973bbe2ef5fffa8a55ad1f3c6e89
ssdeep: 1536:ZWpqbYhsj6mUaelS8KiZPRRvpERqsOzoHS3M936:gcvelS85NpERvOzKS3M936
type: PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: Copyright xa9  2020
Assembly Version: 1.0.0.0
InternalName: SMOKESIGNAL.exe
FileVersion: 1.0.0.0
CompanyName: None
LegalTrademarks: 
Comments: Helper tool
ProductName: SMOKESIGNAL tool
ProductVersion: 1.0.0.0
FileDescription: SMOKESIGNAL
OriginalFilename: SMOKESIGNAL.exe

Trojan.Win32.Shelma.benz also known as:

MicroWorld-eScanTrojan.GenericKD.45816013
McAfeeArtemis!97CCF01C697B
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_60% (W)
BitDefenderTrojan.GenericKD.45816013
ArcabitTrojan.Generic.D2BB18CD
BitDefenderThetaGen:NN.ZemsilF.34590.fm0@aqL133m
APEXMalicious
KasperskyTrojan.Win32.Shelma.benz
AlibabaTrojan:Win32/Shelma.1708bcd7
Ad-AwareTrojan.GenericKD.45816013
EmsisoftTrojan.GenericKD.45816013 (B)
ZillyaTrojan.Shelma.Win32.8036
McAfee-GW-EditionArtemis
FireEyeGeneric.mg.97ccf01c697b21b4
SophosGeneric PUA LH (PUA)
MAXmalware (ai score=81)
GridinsoftRansom.Win32.Zpevdo.sa
MicrosoftProgram:Win32/Wacapew.C!ml
ZoneAlarmTrojan.Win32.Shelma.benz
GDataTrojan.GenericKD.45816013
ALYacTrojan.GenericKD.45816013
MalwarebytesGeneric.Malware/Suspicious
RisingTrojan.Shelma!8.1A3D (CLOUD)
Qihoo-360Win32/Ransom.DogHousePower.HgIASP8A

How to remove Trojan.Win32.Shelma.benz?

Trojan.Win32.Shelma.benz removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment