Trojan.Win32.Shelma.xdc information

The Trojan.Win32.Shelma.xdc is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan.Win32.Shelma.xdc virus can do?

Anomalous binary characteristics

How to determine Trojan.Win32.Shelma.xdc?


File Info:
crc32: 6A1BD66C
md5: 577878b4f4e45699e8515d261d298ae2
name: 577878B4F4E45699E8515D261D298AE2.mlw
sha1: a3dbc58672ea158f7cb8e5d478f2fea78870b00c
sha256: b56785b18818cd318ef5deabd2d945dc89186fc708ee52021d13913a63feaa7d
sha512: 5104c82e7842a8a7bd6812bb46652ba8ba22ae7410fe17245d59e042565727164788a1e5282945eb0b6d600a684e7c7628ec6b4a9ab98bfdec9f642581079a1d
ssdeep: 12288:FeqW86TfRJsTxglFIV/4Zf8FkKBPFrmtJxv/znLABkeGevRcAqn9LqgqmlrexDv:FV6rAxg7IeEOKXrmtJx3rLABk1eFElr
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
LegalCopyright: Copyright xa9 1997-2017 Simon Tatham.
InternalName: PuTTY
FileVersion: Release 0.70
CompanyName: Simon Tatham
ProductName: PuTTY suite
ProductVersion: Release 0.70
FileDescription: SSH, Telnet and Rlogin client
OriginalFilename: PuTTY
Translation: 0x0809 0x04b0

Trojan.Win32.Shelma.xdc also known as:

Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
Cynet	Malicious (score: 100)
Cylance	Unsafe
Zillya	Trojan.Shelma.Win32.9891
Sangfor	Trojan.Win32.Save.a
CrowdStrike	win/malicious_confidence_70% (W)
Alibaba	Trojan:Win32/Shelma.49252f2a
Cybereason	malicious.672ea1
Symantec	ML.Attribute.HighConfidence
APEX	Malicious
Avast	Win32:Malware-gen
Kaspersky	Trojan.Win32.Shelma.xdc
Tencent	Win32.Trojan.Shelma.Swbg
Sophos	Mal/Generic-R + ATK/Behav-321
VIPRE	Trojan.Win32.Generic!BT
TrendMicro	TROJ_GEN.R002C0RG821
McAfee-GW-Edition	BehavesLike.Win32.BadFile.bh
FireEye	Generic.mg.577878b4f4e45699
SentinelOne	Static AI – Malicious PE
Jiangmin	Trojan.Shelma.cso
Avira	TR/Shelma.hpqpu
Microsoft	Trojan:Win32/Wacatac.B!ml
GData	Win32.Trojan.Kryptik.CVD2ES
McAfee	Artemis!577878B4F4E4
MAX	malware (ai score=94)
VBA32	Malware-Cryptor.General.3
TrendMicro-HouseCall	TROJ_GEN.R002C0RG821
Rising	Trojan.Generic@ML.92 (RDMK:XYPG3nEeBAWHT5VB9QT6zw)
Ikarus	Trojan.Win32.Rozena
MaxSecure	Trojan.Malware.119537377.susgen
Fortinet	W32/Rozena.AXP!tr
AVG	Win32:Malware-gen
Paloalto	generic.ml

How to remove Trojan.Win32.Shelma.xdc?

Trojan.Win32.Shelma.xdc removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X