About “Trojan.Win32.Vobfus.bads” infection

Malware Removal

The Trojan.Win32.Vobfus.bads is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan.Win32.Vobfus.bads virus can do?

  • Reads data out of its own binary image
  • Drops a binary and executes it
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan.Win32.Vobfus.bads?


File Info:

crc32: 8F4FE052
md5: 974317f8408b77933354de7a175f3ad5
name: 974317F8408B77933354DE7A175F3AD5.mlw
sha1: a7161c8aa8da519759613145cdc086484de32df5
sha256: 40afa1e323be151d0d7a38c72f771b0b9e909f49ddade942d4260a5e29e5ec2f
sha512: 02e1ad8db8386ad981e1f4d71c1b2a9ea18c198162439b268811ab626590500358d1fcc5309b47890965ea703ebc3eb52dfdfa28fd68a9f613bd90e8583956ac
ssdeep: 6144:CRqJ4hy0JeShiY5lfAWRmhmoOrtJ1DNFbSvx8x0RYL:todJeST9Umn3Uvx8ORYL
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive

Version Info:

0: [No Data]

Trojan.Win32.Vobfus.bads also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.36410871
CAT-QuickHealTrojan.Multi
McAfeeRDN/Generic PWS.y
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Multi.Generic.4!c
SangforTrojan.Win32.Save.a
BitDefenderTrojan.GenericKD.36410871
K7GWTrojan ( 0053b94a1 )
Cybereasonmalicious.8408b7
CyrenW32/Trojan.DAN.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Trojan-gen
ClamAVWin.Packed.Gorgon-8180272-0
KasperskyTrojan.Win32.Vobfus.bads
AlibabaTrojan:MSIL/Generic.d8d9e872
NANO-AntivirusTrojan.Win32.Vobfus.imvbyh
TencentWin32.Trojan.Vobfus.Hsrz
Ad-AwareTrojan.GenericKD.36410871
EmsisoftTrojan.GenericKD.36410871 (B)
F-SecureHeuristic.HEUR/AGEN.1112138
DrWebTrojan.Siggen12.15214
McAfee-GW-EditionRDN/Generic PWS.y
FireEyeGeneric.mg.974317f8408b7793
SophosMal/Generic-S
IkarusTrojan-Downloader.MSIL.Small
AviraHEUR/AGEN.1112138
MAXmalware (ai score=84)
Antiy-AVLTrojan/Win32.Generic
KingsoftWin32.PSWTroj.Agensla.t.(kcloud)
MicrosoftTrojan:Win32/Mamson.A!ac
GridinsoftTrojan.Win32.Packed.oa
ArcabitTrojan.Generic.D22B95F7
ZoneAlarmTrojan.Win32.Vobfus.bads
GDataTrojan.GenericKD.36410871
CynetMalicious (score: 100)
AhnLab-V3Malware/Win32.Generic.C4223346
BitDefenderThetaGen:NN.ZemsilF.34590.am0@am!OZzl
ALYacTrojan.GenericKD.36410871
MalwarebytesMalware.AI.3293921727
PandaTrj/CI.A
ZonerTrojan.Win32.NSIS.16588
ESET-NOD32multiple detections
TrendMicro-HouseCallTROJ_GEN.R002H0CBR21
RisingDropper.Agent!8.2F (CLOUD)
SentinelOneStatic AI – Suspicious PE
eGambitUnsafe.AI_Score_92%
FortinetMSIL/Agent.GIJ!tr.dldr
AVGWin32:Trojan-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (W)
Qihoo-360Win32/Trojan.Generic.HyoDjw8A

How to remove Trojan.Win32.Vobfus.bads?

Trojan.Win32.Vobfus.bads removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment