Trojan

Trojan:Win32/Phonzy.B!ml malicious file

Malware Removal

The Trojan:Win32/Phonzy.B!ml is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Phonzy.B!ml virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Trojan:Win32/Phonzy.B!ml?



File Info:

name: 63FA3A4C541F8EB9758A.mlw
path: /opt/CAPEv2/storage/binaries/c93c75e03d379881d3179271032db2003d65c816501a5cd27bada060e05fe8ff
crc32: F43F6454
md5: 63fa3a4c541f8eb9758a50c9d34ce432
sha1: 35cca28c316a0ed47afeeee1a6268579d613a84b
sha256: c93c75e03d379881d3179271032db2003d65c816501a5cd27bada060e05fe8ff
sha512: bba8a0032e26f68e79ab9a9c570bf1d109aaa65b9b17f52294b74e610ac55cda0f546dd6ae6a48686c47816e82f79789f61f74cfe388c0f946cc8694e32c041b
ssdeep: 3072:nIyRF9ESWu0SWuDmSXrw3Mtr0smZ8FAC2jnkbOuWEvK3rBNN2jN21/0NQn0NQ1:nIyFESWu0SWu2shFAC2jnkbOupvuz
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1B7F37C6BD411F06FFA0043B609B7FB9DBCA87CA93EF1EDD64641C1269E6053224D6287
sha3_384: fa250a2e3dbecf2178e36eede7ec3760fdc7660b075e140d43b680fb876d6601a1d1ba8b969a7e66121f6877c4008499
ep_bytes: 
timestamp: 2014-04-29 18:27:40


Version Info:

0: [No Data]

Trojan:Win32/Phonzy.B!ml also known as:

BkavW32.AIDetectMalware
ClamAVWin.Malware.Shodi-10014025-0
SkyhighBehavesLike.Win32.Generic.ch
MalwarebytesMalware.AI.1838386179
SangforSuspicious.Win32.Save.a
Elasticmalicious (high confidence)
SUPERAntiSpywareTrojan.Agent/Gen-Crypt
AvastWin64:Evo-gen [Trj]
SophosGeneric ML PUA (PUA)
SentinelOneStatic AI – Malicious PE
GoogleDetected
Antiy-AVLVirus/Win64.Shohdi.a
XcitiumHeur.Corrupt.PE@1z141z3
MicrosoftTrojan:Win32/Phonzy.B!ml
VaristW32/S-5a8d2096!Eldorado
McAfeeGenericRXTK-BY!63FA3A4C541F
RisingTrojan.Generic@AI.100 (RDML:sR0CXpp0+XtOY7332udYBQ)
IkarusTrojan.Crypt
MaxSecureTrojan.Malware.3411146.susgen
FortinetW32/Shohdi.6145!tr
AVGWin64:Evo-gen [Trj]

How to remove Trojan:Win32/Phonzy.B!ml?

Trojan:Win32/Phonzy.B!ml removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment