Trojan

Should I remove “TrojanDownloader:Win32/Ligzoc.B”?

Malware Removal

The TrojanDownloader:Win32/Ligzoc.B is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:Win32/Ligzoc.B virus can do?

  • Repeatedly searches for a not-found process, may want to run with startbrowser=1 option
  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)

Related domains:

dl.jmfo.cn

How to determine TrojanDownloader:Win32/Ligzoc.B?



File Info:

crc32: 7986D1AB
md5: d0a13daed958e563ea1312eca5943e56
name: D0A13DAED958E563EA1312ECA5943E56.mlw
sha1: 9cda98ef8ad0c91bd6eae5293fb893aa5ebbe42c
sha256: f91cadfafd1050e9fec99cb44a111163d2c7bce8a51963e9997bd2425e3ab0db
sha512: 814e04eb7ac8eb356c175cff7f9f768b60652e92443bf514435c56ed30652be9bef6674539d2ff23b9cf686f8994464e730b1e185d97a68ce94759288e6e0656
ssdeep: 1536:FSJatUR7LZ6MR6JA+TWf+e4Hg3cBsjLGob7x4IAcIc:FCR7LnR6JA+Ty+e2D/oHhEc
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

LegalCopyright: x7248x6743x6240x6709 (C) 2004
InternalName: Client
FileVersion: 1, 0, 0, 1
CompanyName: 
LegalTrademarks: 
ProductName: Client x5e94x7528x7a0bx5e8f
ProductVersion: 1, 0, 0, 1
FileDescription: Client Microsoft x57fax7840x7c7bx5e94x7528x7a0bx5e8f
OriginalFilename: Client.EXE
Translation: 0x0804 0x04b0

TrojanDownloader:Win32/Ligzoc.B also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Graftor.184241
ALYacGen:Variant.Graftor.184241
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusTrojan-Downloader ( 004d18cb1 )
BitDefenderGen:Variant.Graftor.184241
K7GWTrojan-Downloader ( 004d18cb1 )
Cybereasonmalicious.ed958e
BaiduWin32.Trojan-Downloader.Agent.cu
CyrenW32/S-16f1d007!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Malware-gen
KasperskyTrojan-Downloader.Win32.Adload.iumc
NANO-AntivirusTrojan.Win32.Agent.drdjep
AegisLabTrojan.Win32.Generic.4!c
Ad-AwareGen:Variant.Graftor.184241
EmsisoftGen:Variant.Graftor.184241 (B)
ComodoTrojWare.Win32.TrojanDownloader.Agent.DF@5ssutr
F-SecureTrojan.TR/Crypt.XPACK.Gen7
ZillyaTrojan.Badur.Win32.31155
McAfee-GW-EditionGenericR-DLW!D0A13DAED958
FireEyeGeneric.mg.d0a13daed958e563
IkarusTrojan-Downloader.Win32.Agent
JiangminTrojanDownloader.Adload.aahl
AviraTR/Crypt.XPACK.Gen7
MAXmalware (ai score=81)
Antiy-AVLTrojan/Win32.TSGeneric
KingsoftWin32.Troj.GenericKD.v.(kcloud)
MicrosoftTrojanDownloader:Win32/Ligzoc.B
ArcabitTrojan.Graftor.D2CFB1
ZoneAlarmTrojan-Downloader.Win32.Adload.iumc
GDataGen:Variant.Graftor.184241
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.R147563
McAfeeGenericR-DLW!D0A13DAED958
VBA32TrojanDownloader.Adload
MalwarebytesMalware.AI.3777548529
PandaTrj/Genetic.gen
ESET-NOD32Win32/TrojanDownloader.Agent.BFY
RisingTrojan.DL.Win32.GEN.d (CLASSIC)
YandexTrojan.DL.Agent!gWGkz92AsP8
SentinelOneStatic AI – Suspicious PE
eGambitGeneric.Trojan
FortinetW32/Agent.BFY!tr.dldr
BitDefenderThetaGen:NN.ZexaF.34804.fq1@aiEdFleb
AVGWin32:Malware-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_70% (D)
Qihoo-360Win32/Trojan.Downloader.ab0

How to remove TrojanDownloader:Win32/Ligzoc.B?

TrojanDownloader:Win32/Ligzoc.B removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment