Trojan:Win32/Glupteba.CE!MTB (file analysis)

The Trojan:Win32/Glupteba.CE!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Trojan:Win32/Glupteba.CE!MTB virus can do?

Authenticode signature is invalid

How to determine Trojan:Win32/Glupteba.CE!MTB?


File Info:
name: 7696752C93205766A1F5.mlw
path: /opt/CAPEv2/storage/binaries/7db57a4c8c3a5efe212cfe5dfd98b17832c5965ae9af991c5932af97e5b9eaaa
crc32: 5812D2B0
md5: 7696752c93205766a1f57ec7afbd076b
sha1: eeaaf3c2a82059fc86b590994e6978082ca77d04
sha256: 7db57a4c8c3a5efe212cfe5dfd98b17832c5965ae9af991c5932af97e5b9eaaa
sha512: db1b76e592349f1eb7d7fa57dadec07ff856ea07b4433722bc30689676e2c8e48e3b8bc558d61c49989d86e7927b2dca0edc1e65404f8fe24a7fbeb368749d56
ssdeep: 768:iMrpYGqqe2TXhrimkK33aK9z3A6PJEmDt:iopYGDei2pK33aSJEIt
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T161E24B939598517BCD0287FF46FEA15BD9DE8E4FCACADD8509400F1F6C10A8394E3926
sha3_384: c31474c0d5b998dd3d5281b60173952f78b67fdb8dd3c88fbd55beb8943030b477d4bde72e1f287453ba9bec09d3a9cd
ep_bytes: bed3c03f794381eb8fde738768d88540
timestamp: 1970-01-01 00:00:00

Version Info:
0: [No Data]

Trojan:Win32/Glupteba.CE!MTB also known as:

Bkav	W32.AIDetect.malware2
Elastic	malicious (high confidence)
DrWeb	Trojan.Siggen14.7487
FireEye	Generic.mg.7696752c93205766
McAfee	Artemis!7696752C9320
Malwarebytes	Trojan.Injector
K7AntiVirus	Trojan ( 00577ea11 )
K7GW	Trojan ( 00577ea11 )
CrowdStrike	win/malicious_confidence_100% (W)
Cyren	W32/Zbot.W.gen!Eldorado
NANO-Antivirus	Virus.Win32.Gen-Crypt.ccnc
Tencent	Trojan.Win32.Copak.wc
Sophos	ML/PE-A + Troj/Agent-BGOS
McAfee-GW-Edition	BehavesLike.Win32.RAHack.nh
SentinelOne	Static AI – Malicious PE
Ikarus	Trojan.Win32.Glupteba
GData	Win32.Trojan.Agent.473MD7
Antiy-AVL	Trojan/Generic.ASMalwS.33A60D9
Microsoft	Trojan:Win32/Glupteba.CE!MTB
Cynet	Malicious (score: 100)
APEX	Malicious
Rising	Trojan.Injector!8.C4 (TFE:dGZlOgTIC0CEf3v0Zg)
Fortinet	W32/GenKryptik.CTNW!tr
Cybereason	malicious.2a8205

How to remove Trojan:Win32/Glupteba.CE!MTB?

Trojan:Win32/Glupteba.CE!MTB removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X