Trojan

What is “Trojan:Win32/Redline.GNR!MTB”?

Malware Removal

The Trojan:Win32/Redline.GNR!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Redline.GNR!MTB virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Trojan:Win32/Redline.GNR!MTB?



File Info:

name: 80E822C505FC705379BE.mlw
path: /opt/CAPEv2/storage/binaries/93720e13415c9301499e3d51b2174ae59ff0c8137189fd9a4e6afe2cf95480b3
crc32: 8602EB42
md5: 80e822c505fc705379befa48aea8686d
sha1: 230f5438b9c23b6411733d0f401269889d1c1a1a
sha256: 93720e13415c9301499e3d51b2174ae59ff0c8137189fd9a4e6afe2cf95480b3
sha512: 18ad81a781f27474c5ac7bc31d5192018e0d1f828a92731202e3b8fc2fac844e4e3900a2bf63f6c421e46c46f60ef263efc84cdf8d975cf46c2ad6553061307c
ssdeep: 24576:QoY2dASetf+BVzsGIoRj3cBW/OFSuWwW+7:detf+BVzIwmrF7WwW
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T15F459E3078D88571EDE720B746ECFA2A42AED0B4071506CF16D81BEEE7606D17B32997
sha3_384: 21d5fe6ce639c7bba2839999ce440b5f3128de01fa28eecc3e8f5332ac4fba609a71c619f5b69b520a960ede6ddbdccd
ep_bytes: e9ea280400e97b270700e95daf0400e9
timestamp: 2023-11-02 02:07:05


Version Info:

0: [No Data]

Trojan:Win32/Redline.GNR!MTB also known as:

BkavW32.AIDetectMalware
Elasticmalicious (high confidence)
SkyhighBehavesLike.Win32.Dropper.th
CrowdStrikewin/malicious_confidence_70% (D)
BitDefenderThetaGen:NN.ZexaF.36792.hDW@aOltpIi
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Kryptik.HUYH
CynetMalicious (score: 100)
APEXMalicious
ClamAVWin.Packed.Pwsx-10012424-0
KasperskyVHO:Backdoor.Win32.Convagent.gen
RisingBackdoor.Agent!8.C5D (TFE:1:6GqAaQTPo2I)
SentinelOneStatic AI – Suspicious PE
VaristW32/Kryptik.KNN.gen!Eldorado
MicrosoftTrojan:Win32/Redline.GNR!MTB
ZoneAlarmHEUR:Trojan-Spy.Win32.Stealer.gen
GoogleDetected
DeepInstinctMALICIOUS
PandaTrj/Genetic.gen
IkarusTrojan.Win32.Redline
MaxSecureTrojan.Malware.121218.susgen
FortinetW32/Injector.ETFD!tr
AVGWin32:TrojanX-gen [Trj]
AvastWin32:TrojanX-gen [Trj]

How to remove Trojan:Win32/Redline.GNR!MTB?

Trojan:Win32/Redline.GNR!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment