Trojan

Trojan:Win32/Phonzy.B!ml information

Malware Removal

The Trojan:Win32/Phonzy.B!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Phonzy.B!ml virus can do?

  • Sample contains Overlay data
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan:Win32/Phonzy.B!ml?



File Info:

name: D71F7616A08DB2A7F8D0.mlw
path: /opt/CAPEv2/storage/binaries/8f97126d660c9f18d401142c1744d642cad18548c86e77cb05f386f9fee9844a
crc32: 669C7BA2
md5: d71f7616a08db2a7f8d05ce4d8735898
sha1: 403325824de1929ecfc5823f69a672961784d615
sha256: 8f97126d660c9f18d401142c1744d642cad18548c86e77cb05f386f9fee9844a
sha512: 3724ee92b1b236043027d1dadd8a35f21c8ff731602b963c87974b799f5daafd339838f93afa90cf4af7487914695942f12059eea9cc91aa83c2a68fe911a33a
ssdeep: 12288:wYWr7d0NxksRpWE9FRHSfNm1wgbIxnBw7dzE+e3gxZC6LgjigDy5fdv8fWi+:wYqCks7WE9F5pwg8zmdqQjC60jiHkU
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T101751201F3C25436F9A205B28EBA95AA5929FD71DB4D90D7B2C47A1F28F45E0BD30723
sha3_384: a7ab881098322098dce374aeb83aff0bc0237a9474afd0a946881c71fad23127968462e1a986078baf8c730d7ceb3475
ep_bytes: e8d3030000e937fdffffcccc68d57b40
timestamp: 2014-11-20 18:03:43


Version Info:

CompanyName: Adobe Systems Incorporated
FileDescription: Adobe Acrobat Update Service
FileVersion: 1.801.10.4720
InternalName: armsvc.exe
LegalCopyright: Copyright © 2013 Adobe Systems Incorporated.  All rights reserved.
OriginalFilename: armsvc.exe
ProductName: Adobe Acrobat Update Service
ProductVersion: 1.801.10.4720
Translation: 0x0409 0x04b0

Trojan:Win32/Phonzy.B!ml also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
SkyhighBehavesLike.Win32.Generic.tt
McAfeeArtemis!D71F7616A08D
Cylanceunsafe
SangforSuspicious.Win32.Save.a
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Malware.Expiro-9937504-0
SophosML/PE-A
IkarusVirus.Win32.Expiro
VaristW32/Floxif.H.gen!Eldorado
MicrosoftTrojan:Win32/Phonzy.B!ml
GoogleDetected
FortinetW32/PossibleThreat
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Trojan:Win32/Phonzy.B!ml?

Trojan:Win32/Phonzy.B!ml removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment