Trojan

Trojan:Win32/Fuery.ASN!MTB removal

Malware Removal

The Trojan:Win32/Fuery.ASN!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Fuery.ASN!MTB virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • CAPE extracted potentially suspicious content
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics
  • Yara rule detections observed from a process memory dump/dropped files/CAPE

How to determine Trojan:Win32/Fuery.ASN!MTB?



File Info:

name: 3023D2D94474EC03C814.mlw
path: /opt/CAPEv2/storage/binaries/a6a8794db53d656f0fd9ad525c611f10edfb594538607cdc5b8c34ad0047c709
crc32: C13D48B4
md5: 3023d2d94474ec03c8140e9a7093da08
sha1: b644b1481bdec2eeb92613b41268a5d180bb7941
sha256: a6a8794db53d656f0fd9ad525c611f10edfb594538607cdc5b8c34ad0047c709
sha512: 64a0b0319ebfff1626c7347cebdec84e0daa86fab65184be2282fd03e93ec044f287bb4fdee6693be9fcd3a63aa0581b9da4eb4171713caad0a2a23c136c5c9e
ssdeep: 24576:LcoXvzOopJvUCJ2pnyqii8Y39Wr17jEDICX0MLmJMPX6usOPqw:IoXvzPpVrJ2pnyqii8YNWZEDICX0MLmU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T11A55D15A1A9348A1FE45C2348B9BD3B384564C723EAD1C3BA8567B31E5349F2C53F1CA
sha3_384: 5a79149bbaecdb4f6cf55ee50129a865e9a40972960b099af9ff80d7cc1f27eb82927b42ecabd099ac86bd201084d7d1
ep_bytes: e839600000e979feffffcccccccccccc
timestamp: 2014-03-11 10:54:23


Version Info:

CompanyName: Tencent
FileDescription: TASLogin Application
FileVersion: 2, 0, 27, 13735
InternalName: TASLogin
LegalCopyright: Copyright (C) 2012
ProductName: TASLogin Application
ProductVersion: 2, 0, 27, 13735
SpecialBuild: st
Comments: 2014-03-10
Translation: 0x0804 0x04b0

Trojan:Win32/Fuery.ASN!MTB also known as:

BkavW32.Common.801D5CA2
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKDZ.98311
SkyhighBehavesLike.Win32.Generic.tc
ALYacTrojan.GenericKDZ.98311
MalwarebytesGeneric.Malware.AI.DDS
VIPRETrojan.GenericKDZ.98311
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0015dce31 )
BitDefenderTrojan.GenericKDZ.98311
K7GWTrojan ( 0015dce31 )
CrowdStrikewin/malicious_confidence_100% (D)
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
ESET-NOD32a variant of Win32/Patched.IW
APEXMalicious
ClamAVWin.Trojan.Generic-9864088-0
KasperskyHEUR:Exploit.Win32.ShellCode.gen
RisingTrojan.Patch!1.B0CA (CLASSIC)
SophosTroj/Patched-BS
F-SecureTrojan.TR/Patched.Ren.Gen
DrWebWin32.HLLP.Siggen.54
ZillyaTrojan.GenericKD.Win32.43907
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.3023d2d94474ec03
EmsisoftTrojan.GenericKDZ.98311 (B)
IkarusTrojan.Win32.Patched
GoogleDetected
AviraTR/Patched.Ren.Gen
VaristW32/Patched.FI.gen!Eldorado
Antiy-AVLGrayWare/Win32.Patched.bak
Kingsoftmalware.kb.a.853
MicrosoftTrojan:Win32/Fuery.ASN!MTB
XcitiumHeur.Corrupt.PE@1z141z3
ArcabitTrojan.Generic.D18007
ZoneAlarmHEUR:Exploit.Win32.ShellCode.gen
GDataTrojan.GenericKDZ.98311
CynetMalicious (score: 100)
VBA32BScope.Trojan.Fuery
MAXmalware (ai score=84)
DeepInstinctMALICIOUS
Cylanceunsafe
TencentTrojan.Win32.Bingoml.yb
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Patched.IW!tr
Cybereasonmalicious.81bdec

How to remove Trojan:Win32/Fuery.ASN!MTB?

Trojan:Win32/Fuery.ASN!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment