Trojan

TrojanDownloader:Win32/Rirdra malicious file

Malware Removal

The TrojanDownloader:Win32/Rirdra is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:Win32/Rirdra virus can do?

  • Sample contains Overlay data
  • Authenticode signature is invalid

How to determine TrojanDownloader:Win32/Rirdra?



File Info:

name: DF467A9CEB693F3A8551.mlw
path: /opt/CAPEv2/storage/binaries/37f866b0e5de25855c75d5bd1f300f005185ebf3995b8cb2780628974b28bfc8
crc32: CB6CA81E
md5: df467a9ceb693f3a8551a5a8d7194990
sha1: d1a53f6193ebfc816fd64122601a46bd24f8b894
sha256: 37f866b0e5de25855c75d5bd1f300f005185ebf3995b8cb2780628974b28bfc8
sha512: 2b1557d81899dd0537cc48334986e46091ac896fc20eff902b7263d9dbc21f7b719aabff8d8b7dd5c87b67e3d4e88950e57a1e76b378f0351fe029fc45c2d78d
ssdeep: 384:diKA1vlzvTHv5bE+SjMMWYlCbN71kHW9G5fpmkcg:d81vlb9b1S4M/gB7SW9G5fdcg
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T19282EAB2B0979767D1CD41F0C9DAAD2BFD359E1F2B981182EF84EA7528B0434261B743
sha3_384: 1dd93fef45db2b8f1c736af08dd0a318b581f33dcc374c4c21012ebd76477b2ab4f689d3db0634e4458ce8f18f5814e8
ep_bytes: b801000000c20c009090909090909090
timestamp: 2014-03-31 13:23:52


Version Info:

0: [No Data]

TrojanDownloader:Win32/Rirdra also known as:

BkavW32.Common.4C4D3CC2
LionicTrojan.Win32.Reconyc.lXow
Elasticmalicious (high confidence)
MicroWorld-eScanGen:Variant.Lazy.273663
SkyhighGeneric-FAQE!DF467A9CEB69
ALYacGen:Variant.Lazy.273663
ZillyaTrojan.Reconyc.Win32.10217
SangforSuspicious.Win32.Save.a
K7AntiVirusTrojan ( 004e40fe1 )
AlibabaTrojanDownloader:Win32/Reconyc.d7192edd
K7GWTrojan ( 004e40fe1 )
CrowdStrikewin/malicious_confidence_100% (W)
BaiduWin32.Trojan-Downloader.Agent.bq
SymantecTrojan.Gen.MBT
ESET-NOD32a variant of Win32/Baidence.A
CynetMalicious (score: 100)
KasperskyTrojan.Win32.Reconyc.bfwb
BitDefenderGen:Variant.Lazy.273663
NANO-AntivirusTrojan.Win32.Reconyc.cwmhfu
AvastWin32:Evo-gen [Trj]
TencentWin32.Trojan.Reconyc.Fdhl
TACHYONTrojan/W32.Reconyc.17920.B
EmsisoftGen:Variant.Lazy.273663 (B)
F-SecureHeuristic.HEUR/AGEN.1323084
DrWebTrojan.DownLoader11.9316
VIPREGen:Variant.Lazy.273663
TrendMicroTROJ_GEN.R002C0DBH24
FireEyeGeneric.mg.df467a9ceb693f3a
SophosMal/Generic-S
IkarusTrojan-Dropper.Agent
GDataGen:Variant.Lazy.273663
JiangminTrojan.Reconyc.hvr
VaristW32/Reconyc.A.gen!Eldorado
AviraHEUR/AGEN.1323084
Antiy-AVLTrojan/Win32.Reconyc
KingsoftWin32.Trojan.Reconyc.bfwb
XcitiumTrojWare.Win32.FakeAV.HH@2ojb2k
ArcabitTrojan.Lazy.D42CFF
ZoneAlarmTrojan.Win32.Reconyc.bfwb
MicrosoftTrojanDownloader:Win32/Rirdra
GoogleDetected
AhnLab-V3Trojan/Win32.MalPacked.R109683
McAfeeGeneric-FAQE!DF467A9CEB69
MAXmalware (ai score=99)
VBA32Trojan.Reconyc
Cylanceunsafe
PandaTrj/Genetic.gen
TrendMicro-HouseCallTROJ_GEN.R002C0DBH24
RisingTrojan.Generic@AI.100 (RDML:zOycRNe3OEZNcITaIeNi4Q)
YandexTrojan.Reconyc!AJqE6mUrm9I
MaxSecureTrojan.Malware.7012488.susgen
FortinetW32/Reconyc.BF!tr
BitDefenderThetaGen:NN.ZedlaF.36802.bq5@au@DElh
AVGWin32:Evo-gen [Trj]
DeepInstinctMALICIOUS
alibabacloudTrojan:Win/Baidence.A

How to remove TrojanDownloader:Win32/Rirdra?

TrojanDownloader:Win32/Rirdra removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment