TrojanDownloader:Win32/IcedID!ml information

Malware Removal

The TrojanDownloader:Win32/IcedID!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What TrojanDownloader:Win32/IcedID!ml virus can do?

  • The office file contains 4 macros
  • The office file contains a macro with auto execution
  • The office file contains a macro with suspicious strings

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine TrojanDownloader:Win32/IcedID!ml?


File Info:

crc32: 909C5B4E
md5: afe8000bd6e1d590e0ac7358f4e4843b
name: upload_file
sha1: d305c2f2034263529212628da54bc1f920c8d84a
sha256: 626deb3820030d1172d10230f9a413c4a4ce19a290c05b701420d453e575f678
sha512: c517714a71790b2c2a7da6b26dd79e96a01cf35e0c3839e121f43cc5c0547a6c4fcb4e6927c89aa95b9a9555192a33bf1de9b992dc1200a6fefe9b13f04210e6
ssdeep: 3072:Yvr4/zpjZkYkJtE0G1w29JGwmhtUcAuvbQnHXlHVbyBVLNn:0rSz9ZkYMthGnDmHpAuvW3lHFyPN
type: Microsoft Word 2007+

Version Info:

0: [No Data]

TrojanDownloader:Win32/IcedID!ml also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.34982853
FireEyeTrojan.GenericKD.34982853
AegisLabTrojan.Script.Generic.a!c
BitDefenderTrojan.GenericKD.34982853
InvinceaTroj/DocDl-ABBW
CyrenPP97M/Downldr.OK!Eldorado
SymantecISB.Downloader!gen424
KasperskyHEUR:Trojan-Downloader.MSOffice.Agent.gen
AlibabaTrojanDownloader:VBA/Obfuscation.A
NANO-AntivirusTrojan.Ole2.Vbs-heuristic.druvzi
RisingMalware.ObfusVBA@ML.84 (VBA)
Ad-AwareTrojan.GenericKD.34982853
EmsisoftTrojan.GenericKD.34982853 (B)
F-SecureHeuristic.HEUR/Macro.Downloader.MRDY.Gen
TrendMicroHEUR_VBA.O2
McAfee-GW-EditionBehavesLike.Downloader.cc
SophosTroj/DocDl-ABBW
IkarusTrojan-Downloader.VBA.Agent
GDataTrojan.GenericKD.34982853
AviraHEUR/Macro.Downloader.MRDY.Gen
MicrosoftTrojanDownloader:Win32/IcedID!ml
ArcabitHEUR.VBA.CG.1
ZoneAlarmHEUR:Trojan-Downloader.MSOffice.Agent.gen
CynetMalicious (score: 85)
ZonerProbably Heur.W97Obfuscated
TencentHeur.Macro.Generic.f.ac1807c
SentinelOneDFI – Malicious OPENXML
FortinetVBA/Agent.UTN!tr
Qihoo-360virus.office.obfuscated.1

How to remove TrojanDownloader:Win32/IcedID!ml?

TrojanDownloader:Win32/IcedID!ml removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment