Trojan

What is “Trojan:Win32/Glupteba.B!MTB”?

Malware Removal

The Trojan:Win32/Glupteba.B!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Glupteba.B!MTB virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Unconventionial language used in binary resources: Russian
  • The binary contains an unknown PE section name indicative of packing
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Trojan:Win32/Glupteba.B!MTB?



File Info:

name: 07BE2EDBEF3B3C54F2A0.mlw
path: /opt/CAPEv2/storage/binaries/7a498562a197a34c93b1056b82677b6933e3e3b933c737e6a9d1bf60ea0d2041
crc32: D87019D4
md5: 07be2edbef3b3c54f2a058dfa6d565ca
sha1: b69fd01aea5ae1fdc4489105368620146d0273ef
sha256: 7a498562a197a34c93b1056b82677b6933e3e3b933c737e6a9d1bf60ea0d2041
sha512: 022a4ee4807ad4b574957c606168315177e793a396a2d83f2ceb95cdd2885078aa8de6bafc57bda169f3586d224ae9f1bc4a23cc8e82408aa3c52bcc6b8c289b
ssdeep: 12288:NmACCk+iPzdarYbX11t39fAlkC+z59zb4PXLWfp5xHx3Sri:ARSrc1H3KlktzDzb4TCKi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12CC4C02A76F2D4A9D07DC1759CE1878D95037DA99E660A2B30C8C31E1C61FD85F32B72
sha3_384: 6a17b504f076baf272452869cd26ba79647b354010e6a180a22ee95ea0a713b7e2445846a578c85529d2c1e239aff2c0
ep_bytes: 833d198f4200000f847e010000a1118f
timestamp: 2020-09-21 04:56:20


Version Info:

FileVersion: 7.2.1.1
LegalCopyright: Copyright © 2020
ProductVersion: 7.2.1.1
Translation: 0x0409 0x04b0

Trojan:Win32/Glupteba.B!MTB also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Kepiten.trmL
MicroWorld-eScanGen:Variant.Razy.553929
FireEyeGeneric.mg.07be2edbef3b3c54
CAT-QuickHealTrojan.IgenericRI.S12473364
SkyhighBehavesLike.Win32.Generic.hc
McAfeeGenericRXHS-AA!07BE2EDBEF3B
Cylanceunsafe
SangforTrojan.Win32.Save.a
K7AntiVirusTrojan ( 0056559e1 )
AlibabaTrojan:Win32/Glupteba.11b
K7GWTrojan ( 0056559e1 )
CrowdStrikewin/malicious_confidence_100% (W)
ArcabitTrojan.Razy.D873C9
BitDefenderThetaAI:Packer.7DCABDFF1F
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Glupteba.BC
CynetMalicious (score: 100)
APEXMalicious
KasperskyTrojan.Win32.Kepiten.a
BitDefenderGen:Variant.Razy.553929
NANO-AntivirusTrojan.Win32.Kepiten.hvtqwk
SUPERAntiSpywareTrojan.Agent/Gen-Glupteba
AvastWin32:TrojanX-gen [Trj]
TencentMalware.Win32.Gencirc.10b49610
SophosTroj/Glupteba-M
F-SecureTrojan.TR/Crypt.XPACK.Gen2
DrWebTrojan.SpyBot.961
VIPREGen:Variant.Razy.553929
Trapminemalicious.high.ml.score
EmsisoftGen:Variant.Razy.553929 (B)
IkarusTrojan.Win32.Glupteba
JiangminTrojan.Kepiten.a
WebrootW32.Trojan.Gen
VaristW32/S-3ebf0797!Eldorado
AviraTR/Crypt.XPACK.Gen2
Antiy-AVLTrojan/Win32.Glupteba
Kingsoftmalware.kb.a.999
XcitiumMalware@#37n7z7snu1x4u
MicrosoftTrojan:Win32/Glupteba.B!MTB
ZoneAlarmTrojan.Win32.Kepiten.a
GDataWin32.Trojan.PSE.FPK76K
GoogleDetected
AhnLab-V3Malware/Win32.Generic.R332075
VBA32BScope.TrojanProxy.Glupteba
ALYacGen:Variant.Razy.553929
MalwarebytesTrojan.Glupteba
PandaTrj/Genetic.gen
RisingTrojan.Glupteba!1.BC88 (CLASSIC)
YandexTrojan.Kepiten!0RE+zoLONlo
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.101080455.susgen
FortinetW32/Glupteba.B!tr
AVGWin32:TrojanX-gen [Trj]
Cybereasonmalicious.aea5ae
DeepInstinctMALICIOUS

How to remove Trojan:Win32/Glupteba.B!MTB?

Trojan:Win32/Glupteba.B!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment