Trojan:Win32/RanumBot.MT!MTB removal tips

Malware Removal

The Trojan:Win32/RanumBot.MT!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Trojan:Win32/RanumBot.MT!MTB virus can do?

  • Network activity detected but not expressed in API logs

How to determine Trojan:Win32/RanumBot.MT!MTB?


File Info:

crc32: A1CCDDAA
md5: 85ac2a985611214f4a3fb1bf5a4fde06
name: 85AC2A985611214F4A3FB1BF5A4FDE06.mlw
sha1: 162f7d59fcaab24aa9f92f762e5620a34ef3c8e8
sha256: fc1df70b02d1520a0680315ddbef65577ab89571d7f2f4c60030cb767c8f4a0d
sha512: 6dece1e387a09ef148141068376bc4360441a9546614ae9287b49afb1f8cac688af8bede5a3131cbc14cfc147694bdf282f5f9b3038c4937d9ceb3e70f4e4c75
ssdeep: 98304:kzHf7vmorbC/yNwFC6TJZcE94Kcj3sz/Ibt1YcyDqs:+Hzvpr6FHt4Kc/NRs
type: PE32 executable (GUI) Intel 80386 (stripped to external PDB), for MS Windows

Version Info:

0: [No Data]

Trojan:Win32/RanumBot.MT!MTB also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.Agent.ETWT
McAfeeTrojan-FSCT!85AC2A985611
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
AegisLabTrojan.Win32.Fsysna.tr1H
SangforVirus_Suspicious.Win32.Sality.ae
K7AntiVirusTrojan ( 0053252a1 )
BitDefenderTrojan.Agent.ETWT
K7GWTrojan ( 0053252a1 )
Cybereasonmalicious.856112
CyrenW32/Glupteba.D.gen!Eldorado
SymantecML.Attribute.HighConfidence
APEXMalicious
AvastWin32:Trojan-gen
ClamAVWin.Malware.Emotet-7359783-0
KasperskyHEUR:Trojan-DDoS.Win32.Windigo.vho
AlibabaTrojan:Win32/RanumBot.03b073c7
NANO-AntivirusTrojan.Win32.Windigo.hbjazv
RisingTrojan.RanumBot!8.112AC (CLOUD)
Ad-AwareTrojan.Agent.ETWT
EmsisoftTrojan.Agent.ETWT (B)
F-SecureTrojan.TR/Spy.Gen8
DrWebTrojan.SpyBot.936
ZillyaTrojan.RanumBot.Win32.124
TrendMicroTROJ_GEN.R002C0DBR21
McAfee-GW-EditionBehavesLike.Win32.Trojan.vh
FireEyeGeneric.mg.85ac2a985611214f
SophosMal/Generic-S
IkarusTrojan.Win32.Ranumbot
JiangminTrojanDDoS.Windigo.oa
AviraTR/Spy.Gen8
MAXmalware (ai score=80)
Antiy-AVLTrojan[DDoS]/Win32.Windigo
KingsoftWin32.Troj.Undef.(kcloud)
MicrosoftTrojan:Win32/RanumBot.MT!MTB
GridinsoftTrojan.Win32.Emotet.oa!s1
ArcabitTrojan.Agent.ETWT
ZoneAlarmHEUR:Trojan-DDoS.Win32.Windigo.vho
GDataTrojan.Agent.ETWT
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Glupteba.R334753
VBA32TrojanDDoS.Windigo
ALYacTrojan.Agent.ETWT
MalwarebytesMalware.AI.3719588449
PandaTrj/CI.A
ESET-NOD32a variant of WinGo/RanumBot.B
TrendMicro-HouseCallTROJ_GEN.R002C0DBR21
YandexTrojan.RanumBot!Gv8s/Ukyq+E
SentinelOneStatic AI – Malicious PE
eGambitUnsafe.AI_Score_98%
FortinetW32/RanumBot.B!tr
BitDefenderThetaGen:NN.ZexaF.34590.@xW@aiCmICo
AVGWin32:Trojan-gen
Paloaltogeneric.ml
CrowdStrikewin/malicious_confidence_90% (W)
Qihoo-360Win32/TrojanSpy.Generic.HgIASOQA

How to remove Trojan:Win32/RanumBot.MT!MTB?

Trojan:Win32/RanumBot.MT!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment