Trojan

TrojanDownloader:Win32/VB.HM (file analysis)

Malware Removal

The TrojanDownloader:Win32/VB.HM is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What TrojanDownloader:Win32/VB.HM virus can do?

  • Executable code extraction
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine TrojanDownloader:Win32/VB.HM?



File Info:

crc32: 1FC15BF5
md5: ba0b94e9ba823f00098dcf318047df58
name: BA0B94E9BA823F00098DCF318047DF58.mlw
sha1: 7bdc96732b19700eafc424f303345b258a346a5a
sha256: 866ec6c0ea598a9d20d569feeb760c11df8ca63857a7c0520fa3011c44fbb136
sha512: 29f6dcffbf4696755e35659a79460f063e46c41ac0a1034bf2678a43db0992a36bfc9053801f6853f89eff42f8661e3324fa7ff5d30c2ed28f0408818dec5f54
ssdeep: 768:mwtDiFqNtrk0RrzRszLiryEXEh53kJExsqZbkPpMKOztURtputybPh2PKacnW:mwtKerH+niOEm3qRqgF2PIW
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

InternalName: jeelmcdfasf
FileVersion: 1.00
CompanyName: x5927x9646x54c8x4f11
ProductName: x660ex53c21
ProductVersion: 1.00
OriginalFilename: fdsafeef
Translation: 0x0804 0x04b0

TrojanDownloader:Win32/VB.HM also known as:

BkavW32.AIDetectVM.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.36058124
FireEyeGeneric.mg.ba0b94e9ba823f00
CAT-QuickHealTrojanDownloader.Agent
Qihoo-360Win32/Trojan.Downloader.27d
McAfeeDownloader-BRB.gen
CylanceUnsafe
ZillyaDownloader.VB.Win32.197
SangforMalware
K7AntiVirusTrojan-Downloader ( 0057064f1 )
BitDefenderTrojan.GenericKD.36058124
K7GWTrojan-Downloader ( 0057064f1 )
Cybereasonmalicious.32b197
CyrenW32/Downloader.DYIM-2343
SymantecML.Attribute.HighConfidence
TotalDefenseWin32/SillyDl.HQK
APEXMalicious
AvastWin32:Trojan-gen
KasperskyTrojan-Downloader.Win32.VB.hbpi
AlibabaTrojanDownloader:Win32/Emogen.249e0a4a
NANO-AntivirusTrojan.Win32.VB.vmle
ViRobotTrojan.Win32.Downloader.45056.MU
RisingTrojan.DL.Win32.VB.zwn (CLOUD)
Ad-AwareTrojan.GenericKD.36058124
SophosML/PE-A + Mal/Emogen-F
ComodoTrojWare.Win32.Trojan.VB.~AJJ@mndg7
F-SecureTrojan.TR/Agent.rrz.2
DrWebTrojan.DownLoad.44523
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_GEN.R002C0DA921
McAfee-GW-EditionDownloader-BRB.gen
EmsisoftTrojan.GenericKD.36058124 (B)
IkarusTrojan.Win32.VB
JiangminTrojanDownloader.VB.czwd
WebrootW32.Malware.Downloader
AviraTR/Agent.rrz.2
MAXmalware (ai score=100)
KingsoftWin32.Troj.Agent.sd.(kcloud)
MicrosoftTrojanDownloader:Win32/VB.HM
ArcabitTrojan.Generic.D226340C
ZoneAlarmTrojan-Downloader.Win32.VB.hbpi
GDataTrojan.GenericKD.36058124
CynetMalicious (score: 85)
AhnLab-V3Downloader/Win32.VB.R13315
BitDefenderThetaAI:Packer.06B2C6F320
ALYacTrojan.GenericKD.36058124
TACHYONTrojan-Downloader/W32.VB-Agent.45056.CB
VBA32Trojan.VBS.01829
MalwarebytesGeneric.Malware/Suspicious
PandaAdware/AccesMembre
ESET-NOD32a variant of Win32/TrojanDownloader.VB.QLX
TrendMicro-HouseCallTROJ_GEN.R002C0DA921
TencentMalware.Win32.Gencirc.10b8647b
YandexTrojan.DL.VB!1thXttXfQw8
SentinelOneStatic AI – Malicious PE
eGambitGeneric.Downloader
FortinetW32/Agent.PQN!tr
AVGWin32:Trojan-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_100% (D)

How to remove TrojanDownloader:Win32/VB.HM?

TrojanDownloader:Win32/VB.HM removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment