Trojan

Trojan.Win32.VB.avcb removal

Malware Removal

The Trojan.Win32.VB.avcb is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan.Win32.VB.avcb virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Reads data out of its own binary image
  • CAPE extracted potentially suspicious content
  • Drops a binary and executes it
  • Authenticode signature is invalid
  • Behavioural detection: Injection (inter-process)
  • Anomalous binary characteristics
  • Attempts to modify Explorer settings to prevent hidden files from being displayed

How to determine Trojan.Win32.VB.avcb?



File Info:

name: 8FD62EAFE4170B06A42E.mlw
path: /opt/CAPEv2/storage/binaries/59eb50160d309ae8693148efecd47d06c32c427e969b35bfac545a3fd1493f80
crc32: 623C3100
md5: 8fd62eafe4170b06a42e514216561697
sha1: fcc0cd2e7d543133f386497f757ccd27cfe950d4
sha256: 59eb50160d309ae8693148efecd47d06c32c427e969b35bfac545a3fd1493f80
sha512: 22dd0ed53ebb6b8fd9478b3cb50ade7957515104ea5c36325a089c243a62305301fdba88eabfea2200da1dbd72b58b9e16c2c8d29263260bcabd9dbe1e3d0e0b
ssdeep: 3072:8h7GRrsukf3LKaA0auHGAbeh77hi3MWh1KGKkeGrEqlZGIqE5j4oQJf9:8hVtf3LKaA0auHGAbeh77hi3Ma1nioE8
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T18AE3A51A7390F63EC425CAF57D2983A4D06DAC342196AC13F7C25B26B6F6DA79320743
sha3_384: 4a86631df052edc6eacbbdca810f5b4502583012656247308f4ff0a4badfe7841e4d353a217f992b2902d289148b803d
ep_bytes: 684c354000e8eeffffff000000000000
timestamp: 2011-09-01 14:38:03


Version Info:

Translation: 0x0409 0x04b0
ProductName: YJVIgxdbRxNJovset
FileVersion: 1.00
ProductVersion: 1.00
InternalName: GvFazLIplBMx
OriginalFilename: GvFazLIplBMx.exe

Trojan.Win32.VB.avcb also known as:

BkavW32.AIDetectMalware
LionicWorm.Win32.WBNA.luev
DrWebTrojan.VbCrypt.60
MicroWorld-eScanGen:Variant.VBKrypt.23
FireEyeGeneric.mg.8fd62eafe4170b06
CAT-QuickHealTrojan.Vobfus.gen
SkyhighBehavesLike.Win32.VBObfus.cm
McAfeeVBObfus.at
MalwarebytesGeneric.Malware.AI.DDS
VIPREGen:Variant.VBKrypt.23
SangforSuspicious.Win32.Save.vb
K7AntiVirusEmailWorm ( 0054d10f1 )
K7GWEmailWorm ( 0054d10f1 )
CrowdStrikewin/malicious_confidence_100% (D)
ArcabitTrojan.VBKrypt.23
BitDefenderThetaAI:Packer.C2C204D720
VirITWorm.Win32.Generic.AYLH
SymantecW32.Changeup!gen15
Elasticmalicious (high confidence)
ESET-NOD32Win32/AutoRun.VB.AKW
APEXMalicious
ClamAVWin.Trojan.Changeup-6169544-0
KasperskyTrojan.Win32.VB.avcb
BitDefenderGen:Variant.VBKrypt.23
NANO-AntivirusTrojan.Win32.Diple.covjvr
SUPERAntiSpywareTrojan.Agent/Gen-Vobfus
AvastWin32:AutoRun-CHF [Trj]
RisingWorm.VobfusEx!1.99DB (CLASSIC)
SophosMal/SillyFDC-T
F-SecureWorm.WORM/Vobfus.nuab
BaiduWin32.Worm.Pronny.d
TrendMicroWORM_VOBFUS.SMHE
Trapminemalicious.moderate.ml.score
EmsisoftGen:Variant.VBKrypt.23 (B)
IkarusTrojan.Spy.Agent
MAXmalware (ai score=89)
GoogleDetected
AviraWORM/Vobfus.nuab
VaristW32/Vobfus.V.gen!Eldorado
Antiy-AVLWorm/Win32.WBNA.gen
Kingsoftmalware.kb.a.1000
XcitiumWorm.Win32.VB.AB@4pji3v
MicrosoftWorm:Win32/Vobfus!pz
ZoneAlarmTrojan.Win32.VB.avcb
GDataGen:Variant.VBKrypt.23
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Diple.R13793
Acronissuspicious
VBA32Trojan.VBRA.020471
ALYacGen:Variant.VBKrypt.23
TACHYONTrojan/W32.VB-Agent.147456.BE
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallWORM_VOBFUS.SMHE
TencentTrojan.Win32.Koobface.p
YandexTrojan.GenAsa!khIqatqRtpk
SentinelOneStatic AI – Malicious PE
FortinetW32/VBKrypt.C!tr
AVGWin32:AutoRun-CHF [Trj]
Cybereasonmalicious.fe4170
DeepInstinctMALICIOUS
alibabacloudWorm:Win/Vobfus.31283ebf

How to remove Trojan.Win32.VB.avcb?

Trojan.Win32.VB.avcb removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment