Trojan

Trojan:Win32/Remcos.PMU!MTB removal

Malware Removal

The Trojan:Win32/Remcos.PMU!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Remcos.PMU!MTB virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Trojan:Win32/Remcos.PMU!MTB?



File Info:

crc32: 1EBE3DAB
md5: 511a6980e7cc8bccde19340d3430ea4b
name: 511A6980E7CC8BCCDE19340D3430EA4B.mlw
sha1: c3271e1a0bf487501dd5283deb51c7850df00c6b
sha256: 0a0f707663752fcee384add20de2ee2c3f2061781aa8f08266b155317eb4662d
sha512: fd1350e06aa9b3ba7b3ed9264bcdf545411d046be4315c5422d05d7919cb7e1b91ebbfec4e9cabe4bb3f7fe2dbca8cde43461ea82ca70eddca1e0addc8e1a460
ssdeep: 12288:CHuv6TaXda6yswPypNz+w5cUsCPFExCUaMliTE5pfYrfFyA:466ga6ys0Kz+wHpzUEohYrt
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

0: [No Data]

Trojan:Win32/Remcos.PMU!MTB also known as:

BkavW32.AIDetect.malware2
K7AntiVirusRiskware ( 0040eff71 )
LionicTrojan.Win32.Remcos.m!c
DrWebTrojan.Inject4.15035
CynetMalicious (score: 100)
CylanceUnsafe
AlibabaTrojanDownloader:Win32/Remcos.1634e010
K7GWRiskware ( 0040eff71 )
CyrenW32/Delf_Troj.BL.gen!Eldorado
SymantecTrojan Horse
ESET-NOD32Win32/TrojanDownloader.Delf.DGG
APEXMalicious
AvastWin32:RATX-gen [Trj]
KasperskyHEUR:Backdoor.Win32.Remcos.gen
BitDefenderTrojan.GenericKD.46732762
MicroWorld-eScanTrojan.GenericKD.46732762
Ad-AwareTrojan.GenericKD.46732762
SophosMal/Generic-S + Troj/Remcos-ADD
BitDefenderThetaGen:NN.ZelphiCO.34058.QKW@aKexQghi
McAfee-GW-EditionBehavesLike.Win32.AdwareDealPly.jh
FireEyeTrojan.GenericKD.46732762
EmsisoftTrojan.GenericKD.46732762 (B)
WebrootW32.Trojan.Gen
KingsoftWin32.Hack.Undef.(kcloud)
MicrosoftTrojan:Win32/Remcos.PMU!MTB
GDataTrojan.GenericKD.46732762
AhnLab-V3Trojan/Win.RATX-gen.R435597
McAfeeRDN/RemcosRAT
MAXmalware (ai score=87)
MalwarebytesTrojan.MalPack.DLF
TrendMicro-HouseCallTROJ_GEN.R002H0CH321
IkarusTrojan.Inject
FortinetW32/GenKryptik.FHZQ!tr
AVGWin32:RATX-gen [Trj]
Paloaltogeneric.ml
Qihoo-360Win32/Backdoor.Remcos.HgIASZoA

How to remove Trojan:Win32/Remcos.PMU!MTB?

Trojan:Win32/Remcos.PMU!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment