Trojan

Trojan:Win32/Trabin!rts (file analysis)

Malware Removal

The Trojan:Win32/Trabin!rts is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Trabin!rts virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Trojan:Win32/Trabin!rts?



File Info:

name: C42CBB6651D3D72E8426.mlw
path: /opt/CAPEv2/storage/binaries/e10519dc45af5767276f551a47f4de290ef10ba2bc4e35e3bb131bbddcd89df7
crc32: 3A9BDB75
md5: c42cbb6651d3d72e842655f66578300c
sha1: 7ef2aa21ef7285d63b97f9aaaa43734d49f72656
sha256: e10519dc45af5767276f551a47f4de290ef10ba2bc4e35e3bb131bbddcd89df7
sha512: e3f6ab938d012cb8f07e61dba5672001a7585d20fc1276d1f48afe7b83d3bcdee3a42dd31bdfdffcb7f504abe1ce9e944833ad697f647cb777b2ebd59a8e1f20
ssdeep: 48:ZvtPtxwdFKj5sAMoB4zrpjNmLc0nYUNkiafoFu:Z1V2bKtscezth8Zn/k5E
type: PE32 executable (console) Intel 80386, for MS Windows
tlsh: T15951C9810E849CBAD7D9417E8926ABE78A9F20F61F823E570795B005007C09BCFF81B9
sha3_384: ffde1811aa4d5c5410bbd284d69eef5cb9c40bdc2c45f76ffe64b179718b607e5ccf7587cc84ef53770928a6c7a52956
ep_bytes: 6af5ff153c104000a3801740006af6ff
timestamp: 2009-11-23 17:33:59


Version Info:

0: [No Data]

Trojan:Win32/Trabin!rts also known as:

LionicTrojan.Win32.Generic.4!c
SkyhighArtemis
Cylanceunsafe
VirITTrojan.Win32.Agent3.CSM
SymantecML.Attribute.HighConfidence
tehtrisGeneric.Malware
CynetMalicious (score: 99)
APEXMalicious
NANO-AntivirusTrojan.Win32.Vundo.rjvta
F-SecureTrojan.TR/Vundo.Gen2
Trapminemalicious.high.ml.score
FireEyeGeneric.mg.c42cbb6651d3d72e
SophosML/PE-A
IkarusTrojan.Vundo
VaristW32/Zbot.I.gen!Eldorado
AviraTR/Vundo.Gen2
XcitiumMalware@#2j7lqc8jitqj
MicrosoftTrojan:Win32/Trabin!rts
GoogleDetected
McAfeeArtemis!C42CBB6651D3
MalwarebytesMalware.Heuristic.2048
PandaTrj/CI.A
RisingTrojan.Generic@AI.96 (RDML:9qnG//kwTsD2OVWcxP58hg)
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
BitDefenderThetaGen:NN.ZexaCO.36802.aeW@aaW6AB
DeepInstinctMALICIOUS

How to remove Trojan:Win32/Trabin!rts?

Trojan:Win32/Trabin!rts removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment