Trojan

About “Trojan:Win32/Zbot.AR!MTB” infection

Malware Removal

The Trojan:Win32/Zbot.AR!MTB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Trojan:Win32/Zbot.AR!MTB virus can do?

  • Authenticode signature is invalid

How to determine Trojan:Win32/Zbot.AR!MTB?



File Info:

name: 39F82BF233656AB9FF49.mlw
path: /opt/CAPEv2/storage/binaries/8b7adf12c444c8764ab47d9d39274a3b2c6540a187d3f1274ce59c2e95b4f1b7
crc32: A8E86126
md5: 39f82bf233656ab9ff4959e7974d55f4
sha1: 36ee275ba9051dd850a788d25bcf71c3f2e49a5e
sha256: 8b7adf12c444c8764ab47d9d39274a3b2c6540a187d3f1274ce59c2e95b4f1b7
sha512: d783efe0f6985a3792fdced0956cd24fe1ced4cfcdb4d4e691d98b8e75bde0e6d878fb78c0d0c202ff2b15210aa8734ab2596277a558ae2a6d4570a0d18d09e4
ssdeep: 384:iB99X2konzgrxl5ieDApYD2vOJlIHvohEQCC6t:K9X2bnEpieDA62eIHwhzMt
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T113925C54E8C1D071C801B870AD25D7BE983E0C12CB6C909BBFD81D329E7A7E2D2AD55B
sha3_384: 5e8aa3ced542e111ef5f4d16fd4c3b3797b3d5fcc6b201f48f788a421ec49c20f734c60f2b57e5cfa148f53ad16d3fac
ep_bytes: e82a130000e989feffff8bff558bec8b
timestamp: 2014-05-09 05:48:06


Version Info:

0: [No Data]

Trojan:Win32/Zbot.AR!MTB also known as:

BkavW32.AIDetect.malware1
DrWebTrojan.DownLoader11.8114
MicroWorld-eScanGen:Variant.Mikey.119480
FireEyeGeneric.mg.39f82bf233656ab9
ALYacGen:Variant.Mikey.119480
CrowdStrikewin/malicious_confidence_70% (W)
ArcabitTrojan.Mikey.D1D2B8
SymantecSMG.Heur!gen
TrendMicro-HouseCallTROJ_UPATRE.SMN7
BitDefenderGen:Variant.Mikey.119480
NANO-AntivirusTrojan.Win32.Zbot.cyacwi
Ad-AwareGen:Variant.Mikey.119480
EmsisoftGen:Variant.Mikey.119480 (B)
TrendMicroTROJ_UPATRE.SMN7
McAfee-GW-EditionArtemis
JiangminTrojanSpy.Zbot.eegv
MicrosoftTrojan:Win32/Zbot.AR!MTB
GDataGen:Variant.Mikey.119480
CynetMalicious (score: 100)
McAfeeArtemis!39F82BF23365
MAXmalware (ai score=80)
MalwarebytesMalware.AI.3998879189
APEXMalicious
RisingMalware.Heuristic!ET#92% (RDMK:cmRtazq+aHJ2L2VtTSz2MvKgcjCN)
SentinelOneStatic AI – Malicious PE
FortinetW32/UPATRE.SMN7!tr

How to remove Trojan:Win32/Zbot.AR!MTB?

Trojan:Win32/Zbot.AR!MTB removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment