Trojan

What is “Trojan:Win32/Mdrop.A”?

Malware Removal

The Trojan:Win32/Mdrop.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Mdrop.A virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan:Win32/Mdrop.A?



File Info:

name: DEBCDA3ACC6C8DD1E0B8.mlw
path: /opt/CAPEv2/storage/binaries/0beca0da4439d475f60b89bfe42b30622780cae47be4553193f8c84ff83f7fe8
crc32: 55E291E9
md5: debcda3acc6c8dd1e0b8c1c8bc282a20
sha1: 9b934b3c66df91c78d81d164efc9777c4d517e35
sha256: 0beca0da4439d475f60b89bfe42b30622780cae47be4553193f8c84ff83f7fe8
sha512: 0ccefba4700d663c7752ec2722d93d585156dab4a741f6335c2bb135f1326e54a08a105ee4632953ec50e8871d0c7810e2bffbc892d3d245efbcb152d64d8bb6
ssdeep: 3072:3f4YtVuC/IJ9X177Lba6gExbGuRI5TPXZGbtzVhKEPHo:v4Y3ur9lvLmBExbGuRuTPUbtzV8EPH
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T16AF3BF1B7282C8F6C503007F1D598BD05F335861467A90634770AA2DBA7F651BAE8BBE
sha3_384: 6b1033a69ad30695f0e27fdc95467978e102d08683738b3ce564edeebb2da36b1f3218cdb00dcf164922869a4c3e696c
ep_bytes: 5589e583ec146a02ff15dce14200e8cd
timestamp: 2008-05-15 12:23:06


Version Info:

0: [No Data]

Trojan:Win32/Mdrop.A also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Generic.l5wf
Elasticmalicious (high confidence)
CynetMalicious (score: 99)
FireEyeGeneric.mg.debcda3acc6c8dd1
SkyhighArtemis!Trojan
McAfeeArtemis!DEBCDA3ACC6C
Cylanceunsafe
ZillyaBackdoor.RBot.Win32.32860
SangforTrojan.Win32.Save.a
AlibabaWorm:Win32/Mdrop.1970e0f2
K7GWTrojan ( 0003f0621 )
K7AntiVirusTrojan ( 0003f0621 )
BitDefenderThetaGen:NN.ZexaF.36804.jGX@ayUuRTfi
VirITBackdoor.Win32.SdBot.GIZ
SymantecW32.IRCBot
ESET-NOD32a variant of Win32/Injector.CZ
APEXMalicious
AvastWin32:Susn-X [Trj]
ClamAVWin.Trojan.Mybot-10667
KasperskyHEUR:Worm.Win32.Generic
BitDefenderDeepScan:Generic.Sdbot.D9D412E2
NANO-AntivirusTrojan.Win32.Combot.fetsmd
MicroWorld-eScanDeepScan:Generic.Sdbot.D9D412E2
TencentMalware.Win32.Gencirc.13ac913c
EmsisoftDeepScan:Generic.Sdbot.D9D412E2 (B)
F-SecureBackdoor.BDS/Schimit.1
DrWebBackDoor.IRC.Combot.202
VIPREDeepScan:Generic.Sdbot.D9D412E2
TrendMicroTROJ_GEN.R034E01BD15
Trapminemalicious.moderate.ml.score
SophosMal/Generic-S
Paloaltogeneric.ml
JiangminBackdoor/Shark.atr
VaristW32/Backdoor.ROAP-1413
AviraBDS/Schimit.1
MAXmalware (ai score=100)
Antiy-AVLTrojan/Win32.AGeneric
KingsoftWin32.Worm.Generic.a
MicrosoftTrojan:Win32/Mdrop.A
XcitiumBackdoor.Win32.Schimit.10@1o8esz
ArcabitDeepScan:Generic.Sdbot.D9D412E2
ZoneAlarmHEUR:Worm.Win32.Generic
GDataWin32.Trojan.Agent.EJ
GoogleDetected
AhnLab-V3Backdoor/Win32.Poison.C104
VBA32BScope.Backdoor.IRCbot
ALYacDeepScan:Generic.Sdbot.D9D412E2
MalwarebytesGeneric.Malware/Suspicious
PandaGeneric Malware
TrendMicro-HouseCallTROJ_GEN.R034E01BD15
RisingTrojan.Mdrop!8.1F4F (TFE:5:JJLSe5kporQ)
IkarusTrojan.Win32.Stuh
MaxSecureTrojan.Malware.7177504.susgen
FortinetW32/Rbot.gen!tr
AVGWin32:Susn-X [Trj]
DeepInstinctMALICIOUS
alibabacloudWorm:Win/Sdbot.D9D412E2

How to remove Trojan:Win32/Mdrop.A?

Trojan:Win32/Mdrop.A removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment