Trojan

Trojan:Win32/Leonem.7F5 removal tips

Malware Removal

The Trojan:Win32/Leonem.7F5 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Leonem.7F5 virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Trojan:Win32/Leonem.7F5?



File Info:

name: 00E87312B2C5042F03E6.mlw
path: /opt/CAPEv2/storage/binaries/7f5e937bf2a570dccfa6334ef17a3cd9eb822f20994f81ec222a7326ed2d3a02
crc32: 2858F294
md5: 00e87312b2c5042f03e69cdba402b095
sha1: 3d23cc92520f28d27217b1916e1edeaa69091fbc
sha256: 7f5e937bf2a570dccfa6334ef17a3cd9eb822f20994f81ec222a7326ed2d3a02
sha512: 30e041d278eff6e9e9b9e51a5389bd35c82ffb4726ce3c9098b1ae59d11d0560da8733874f1111758478b0cf1d0b4e0a18681b76b4ff69773ebf923a34b9cede
ssdeep: 24576:OdsdcefkjZaUNmP/4kOiq7YO807jMmvWcHnTaftFNeWxfEYeNeW4F53p+CNhcOyE:AG4k/fcHnTaFFNeWxfEhNeWehGyYS
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1ABD55C90BBE4C62BE2AF97B058B195145BFDFC46E742EB8E6408B0E91D737005D2613B
sha3_384: 041898b9567c754e1b5021ba1baba9c373cd05d91f5ac1f5ec633ddded01a3bc7536578aa32374fccfaaa1f2fac4f6ea
ep_bytes: ff254c9c69000000000000000000209c
timestamp: 2022-07-08 01:12:01


Version Info:

Translation: 0x0000 0x04b0
Comments: UniversalAdbDriver
FileDescription: UniversalAdbDriver
FileVersion: 1.0.0.0
InternalName: aYHJE.exe
LegalCopyright: UniversalAdbDriver Copyright ©  2017
OriginalFilename: aYHJE.exe
ProductName: UniversalAdbDriver
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Trojan:Win32/Leonem.7F5 also known as:

LionicTrojan.MSIL.Stelega.i!c
MicroWorld-eScanTrojan.GenericKD.49328784
FireEyeTrojan.GenericKD.49328784
McAfeeArtemis!00E87312B2C5
CylanceUnsafe
ZillyaDownloader.Agent.Win32.480504
SangforDownloader.Msil.Leonem.V95j
K7AntiVirusTrojan-Downloader ( 005954d31 )
AlibabaTrojanPSW:MSIL/Tnega.86b2a403
K7GWTrojan-Downloader ( 005954d31 )
CyrenW32/MSIL_Kryptik.HQI.gen!Eldorado
SymantecMSIL.Downloader!gen7
ESET-NOD32a variant of MSIL/TrojanDownloader.Agent.MMA
APEXMalicious
Paloaltogeneric.ml
KasperskyHEUR:Trojan-PSW.MSIL.Stelega.gen
BitDefenderTrojan.GenericKD.49328784
NANO-AntivirusTrojan.Win32.Stelega.jqdalc
TencentMsil.Trojan-downloader.Agent.Fie
Ad-AwareTrojan.GenericKD.49328784
ComodoMalware@#3szoxw3s4gf0j
DrWebTrojan.DownLoaderNET.428
VIPRETrojan.GenericKD.49328784
TrendMicroTROJ_GEN.R06BC0DGA22
McAfee-GW-EditionArtemis!Trojan
EmsisoftTrojan.GenericKD.49328784 (B)
SentinelOneStatic AI – Suspicious PE
GDataTrojan.GenericKD.49328784
JiangminTrojan.PSW.MSIL.dzer
WebrootW32.Trojan.FL
AviraTR/Dldr.Agent.ujubu
MAXmalware (ai score=100)
KingsoftWin32.Troj.Generic.jm.(kcloud)
ViRobotTrojan.Win32.Z.Stelega.2931712
MicrosoftTrojan:Win32/Leonem.7F5
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win32.MDA.R107085
BitDefenderThetaGen:NN.ZemsilCO.34806.Yo0@aKGPAqn
ALYacTrojan.GenericKD.49328784
VBA32TScope.Trojan.MSIL
MalwarebytesBladabindi.Backdoor.Njrat.DDS
PandaTrj/Chgt.AA
TrendMicro-HouseCallTROJ_GEN.R06BC0DGA22
RisingStealer.Stelega!8.1338D (CLOUD)
YandexTrojan.Igent.bYkxxi.1
IkarusTrojan.MSIL.Inject
MaxSecureTrojan.Malware.74811258.susgen
FortinetMSIL/Agent.MJQ!tr.dldr
AVGWin32:Malware-gen
AvastWin32:Malware-gen
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Trojan:Win32/Leonem.7F5?

Trojan:Win32/Leonem.7F5 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment