Trojan

Trojan:Win32/Redline.GNR!MTB removal guide

Malware Removal

The Trojan:Win32/Redline.GNR!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Redline.GNR!MTB virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Trojan:Win32/Redline.GNR!MTB?



File Info:

name: 8F423885EF800D92A4E5.mlw
path: /opt/CAPEv2/storage/binaries/a07b0a5156562dd105f9f47c1e74098a81f3dbf5e4c9e82217f6a64ff68ae0d1
crc32: B22592AE
md5: 8f423885ef800d92a4e548b87a878e11
sha1: bb9a9244c51a758ef269fa5647cc3939034dd7e0
sha256: a07b0a5156562dd105f9f47c1e74098a81f3dbf5e4c9e82217f6a64ff68ae0d1
sha512: 71d817b777c3146d0ecd2a605cb76ed7ba3f11340d4e9dfef0403be4ac8bcac0f0139f8bf5e2fe99f66d795af136bdc7b72e1de62d4a3eaa063490da4e9bed91
ssdeep: 24576:IrW2dASetf+BVzsGIoRj3cBWPDLdTcEsvC:uetf+BVzIwmq9Tct
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T156459E3138804172EDF321BA42DCF62A866DD0B0072656DB16EB5BEED7706D16F329D2
sha3_384: 3afcf52ad8356d56034fb9830d3d7b3f3f537b03567ca42d3555d62a74065a9442fb087e5169428566480a98dbf356eb
ep_bytes: e9ea280400e97b270700e95daf0400e9
timestamp: 2023-11-02 00:22:34


Version Info:

0: [No Data]

Trojan:Win32/Redline.GNR!MTB also known as:

BkavW32.AIDetectMalware
SkyhighBehavesLike.Win32.Redline.th
CrowdStrikewin/malicious_confidence_70% (D)
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Kryptik.HUYH
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Packed.Pwsx-10012424-0
KasperskyVHO:Trojan-PSW.Win32.Stealerc.gen
RisingBackdoor.Agent!8.C5D (TFE:1:6GqAaQTPo2I)
IkarusTrojan.Win32.Redline
VaristW32/Kryptik.KNN.gen!Eldorado
MicrosoftTrojan:Win32/Redline.GNR!MTB
ZoneAlarmVHO:Trojan-PSW.Win32.Stealerc.gen
GoogleDetected
DeepInstinctMALICIOUS
PandaTrj/Genetic.gen
SentinelOneStatic AI – Suspicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Injector.ETFD!tr
BitDefenderThetaGen:NN.ZexaF.36792.hDW@ayyan3l
AVGWin32:TrojanX-gen [Trj]
AvastWin32:TrojanX-gen [Trj]

How to remove Trojan:Win32/Redline.GNR!MTB?

Trojan:Win32/Redline.GNR!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment