Trojan

TrojanDownloader.Ogimant.A7 removal guide

Malware Removal

The TrojanDownloader.Ogimant.A7 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader.Ogimant.A7 virus can do?

  • Sample contains Overlay data
  • Presents an Authenticode digital signature
  • CAPE extracted potentially suspicious content
  • Unconventionial language used in binary resources: Russian
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine TrojanDownloader.Ogimant.A7?



File Info:

name: 05EF2B68EDAE22941B68.mlw
path: /opt/CAPEv2/storage/binaries/dc6beb9e34f13e558e457e38c05f139e0d68a7a728cda7c7619144d33217e8a3
crc32: CB1EAD26
md5: 05ef2b68edae22941b680c32e3f1e361
sha1: 09868a086cd35a36def8ebb649e6a514ba70c20f
sha256: dc6beb9e34f13e558e457e38c05f139e0d68a7a728cda7c7619144d33217e8a3
sha512: 408e0e2ea1cafeb5415de56c8d79d019429f628d898f4f7a8dddd75507d5dd6000de6c29e73c4abcb25278c5b5851141ef324e81e1cf96f4cfd3620a771439e3
ssdeep: 1536:Hjv+kPuyno6WuI8Xv8XlG4996FgO5zxKGm/aj/WAv83EcyEgOs4gP7:HjvuJISlG49EGIKGm/ivcwP7
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T134F31B0BF8B37230C9C4C4B5F149A1B60D175D0926011853B76CBE463FAE96AB7AEF60
sha3_384: 46fc69e10f3720b65535fbc58d2bf57538a27584ab5f6d707f5b8647a4e9c283f48d8b087ada020599033b1a2fc00f1a
ep_bytes: 5589e583ec18c7042402000000ff1558
timestamp: 2013-12-30 10:30:10


Version Info:

0: [No Data]

TrojanDownloader.Ogimant.A7 also known as:

BkavW32.AIDetectMalware
tehtrisGeneric.Malware
MicroWorld-eScanGen:Application.LoadMoney.1
ClamAVWin.Trojan.Loadmoney-12145
FireEyeGeneric.mg.05ef2b68edae2294
CAT-QuickHealTrojanDownloader.Ogimant.A7
McAfeeAdware-FUI
MalwarebytesGeneric.Malware.AI.DDS
VIPREGen:Application.LoadMoney.1
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 0040f53f1 )
K7GWTrojan ( 005690671 )
Cybereasonmalicious.8edae2
BaiduWin32.Trojan.Kryptik.dl
CyrenW32/LoadMoney.K.gen!Eldorado
SymantecPUA.Loadmoney!gen1
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.CGBF
APEXMalicious
CynetMalicious (score: 100)
Kasperskynot-a-virus:AdWare.Win32.LMN.apm
BitDefenderGen:Application.LoadMoney.1
NANO-AntivirusTrojan.Win32.LMN.dnqhne
AvastWin32:LoadMoney-CB [PUP]
TencentMalware.Win32.Gencirc.10b3992a
EmsisoftGen:Application.LoadMoney.1 (B)
F-SecurePotentialRisk.PUA/LoadMoney.Gen7
DrWebTrojan.LoadMoney.1
ZillyaDownloader.LMNGen.Win32.8
TrendMicroTROJ_OGIMANT.SMB
McAfee-GW-EditionBehavesLike.Win32.PWSZbot.cm
Trapminemalicious.high.ml.score
SophosTroj/LdMon-A
IkarusTrojan.Win32.Spy
GDataGen:Application.LoadMoney.1
JiangminTrojan/Generic.atwqf
AviraPUA/LoadMoney.Gen7
Antiy-AVLTrojan/Win32.Kryptik
XcitiumTrojWare.Win32.Kryptik.BWIO@58g6zq
ArcabitApplication.LoadMoney.1
ZoneAlarmnot-a-virus:AdWare.Win32.LMN.apm
MicrosoftPUAAdvertising:Win32/LoadMoney
GoogleDetected
AhnLab-V3PUP/Win32.LoadMoney.R228134
ALYacGen:Application.LoadMoney.1
MAXmalware (ai score=75)
VBA32BScope.Downloader.LMN
Cylanceunsafe
TrendMicro-HouseCallTROJ_OGIMANT.SMB
RisingTrojan.Kryptik!1.BB28 (CLASSIC)
YandexTrojan.GenAsa!KEJ6wTzsXkU
SentinelOneStatic AI – Suspicious PE
MaxSecurenot-a-virus:Downloader.LMN.a
FortinetW32/Generic.AC.6F6F!tr
AVGWin32:LoadMoney-CB [PUP]
DeepInstinctMALICIOUS
CrowdStrikewin/malicious_confidence_90% (W)

How to remove TrojanDownloader.Ogimant.A7?

TrojanDownloader.Ogimant.A7 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment