Trojan:Win32/Antavmu!pz malicious file

The Trojan:Win32/Antavmu!pz is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Antavmu!pz virus can do?

Uses Windows utilities for basic functionality
Reads data out of its own binary image
Drops a binary and executes it
The binary likely contains encrypted or compressed data.
Authenticode signature is invalid

How to determine Trojan:Win32/Antavmu!pz?


File Info:
name: 73E7E8C0505CE369E546.mlw
path: /opt/CAPEv2/storage/binaries/273a025d354b17080b92c15fd29850887148b2c2897144ee6a39f961c67f2bbd
crc32: 5ADB0540
md5: 73e7e8c0505ce369e546af260d16d4ab
sha1: 92c6ce351ed9d52033a93d607390bff9037fb722
sha256: 273a025d354b17080b92c15fd29850887148b2c2897144ee6a39f961c67f2bbd
sha512: c349be045049917d0a1c31f77e2de3d7efa9a0381fba886c1cc81a6d8e021b323ffb7bdc0f86883f6e208fd13122d708d26de9c2cc42b7122bf3617031c44e1a
ssdeep: 1536:zvRjQHGOoyRtEOQA8AkqUhMb2nuy5wgIP0CSJ+5y/B8GMGlZ5G:zvRcmONRjGdqU7uy5w9WMy/N5G
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T1C583AF5179F0D430E08485B6897D7E73EE3EAA600B47B2679394B554DEE10A0AE0E36B
sha3_384: e1fa09bda90d1dd883773b107f8e2020ed70dd7b5554292f7bc77a81edab24ef8d1453063e6092f34e327ed6381de23a
ep_bytes: eb1066623a432b2b484f4f4b90e92811
timestamp: 2011-02-04 23:50:58

Version Info:
0: [No Data]

Trojan:Win32/Antavmu!pz also known as:

Bkav	W32.AIDetectMalware
MicroWorld-eScan	Gen:Trojan.FileInfector.eGW@aiJEZzn
FireEye	Generic.mg.73e7e8c0505ce369
CAT-QuickHeal	Trojan.AntavmuPMF.S19778283
Skyhigh	BehavesLike.Win32.Dropper.lh
ALYac	Gen:Trojan.FileInfector.eGW@aiJEZzn
Malwarebytes	Generic.Malware.AI.DDS
Zillya	Trojan.KillFiles.Win32.28568
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	Trojan ( 001f4e2b1 )
K7GW	Trojan ( 001f4e2b1 )
CrowdStrike	win/malicious_confidence_100% (D)
Arcabit	Trojan.FileInfector.ECA2F2
BitDefenderTheta	AI:Packer.ED5D5D581E
VirIT	Trojan.Win32.Generic.AFFA
Symantec	Trojan.Dropper
Elastic	malicious (high confidence)
ESET-NOD32	a variant of Win32/KillFiles.NEH
Cynet	Malicious (score: 100)
APEX	Malicious
ClamAV	Win.Malware.Antavmu-9791257-0
Kaspersky	Trojan.Win32.KillFiles.dobe
BitDefender	Gen:Trojan.FileInfector.eGW@aiJEZzn
NANO-Antivirus	Trojan.Win32.MlwGen.dglvxw
SUPERAntiSpyware	Trojan.Agent/Gen-Injector
Avast	Win32:TrojanX-gen [Trj]
Tencent	Trojan.Win32.Killfiles.wa
TACHYON	Trojan/W32.Agent.81408.AAO
Sophos	Mal/Antavmu-A
F-Secure	Trojan.TR/Crypt.ZPACK.Gen7
DrWeb	Trojan.MulDrop6.10374
VIPRE	Gen:Trojan.FileInfector.eGW@aiJEZzn
Trapmine	malicious.moderate.ml.score
Emsisoft	Gen:Trojan.FileInfector.eGW@aiJEZzn (B)
Ikarus	Trojan.Win32.Antavmu
Jiangmin	TrojanDownloader.NSIS.ff
Webroot	W32.Infector
Varist	W32/Antavmu.C.gen!Eldorado
Avira	TR/Crypt.ZPACK.Gen7
Antiy-AVL	Trojan/Win32.SGeneric
Kingsoft	malware.kb.a.997
Xcitium	TrojWare.Win32.KillFiles.NEH@4qfvz0
Microsoft	Trojan:Win32/Antavmu!pz
ZoneAlarm	Trojan.Win32.KillFiles.dobe
GData	Gen:Trojan.FileInfector.eGW@aiJEZzn
Google	Detected
AhnLab-V3	Trojan/Win32.Antavmu.R25058
Acronis	suspicious
McAfee	GenericRXHL-ZT!73E7E8C0505C
MAX	malware (ai score=88)
VBA32	BScope.Trojan.Downloader
Cylance	unsafe
Panda	Trj/Genetic.gen
Rising	Trojan.Win32.Antavmu.d (CLASSIC)
Yandex	Trojan.GenAsa!mLg/yf6hjK0
SentinelOne	Static AI – Malicious PE
MaxSecure	Trojan.Malware.121218.susgen
Fortinet	W32/Antavmu.JWS!tr
AVG	Win32:TrojanX-gen [Trj]
Cybereason	malicious.51ed9d
DeepInstinct	MALICIOUS

How to remove Trojan:Win32/Antavmu!pz?

Trojan:Win32/Antavmu!pz removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X