Trojan

Should I remove “UDS:Trojan-Downloader.Win32.Satacom”?

Malware Removal

The UDS:Trojan-Downloader.Win32.Satacom is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Trojan-Downloader.Win32.Satacom virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Sample contains Overlay data
  • Reads data out of its own binary image
  • Drops a binary and executes it
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid
  • Deletes executed files from disk

How to determine UDS:Trojan-Downloader.Win32.Satacom?



File Info:

name: 132AD31A9E0A85DDFC2A.mlw
path: /opt/CAPEv2/storage/binaries/3eb6bb86d499301cddc83f6f082848df1f23e04ff92385708f76e9203bda5702
crc32: B2ADE101
md5: 132ad31a9e0a85ddfc2a2d81514ac074
sha1: b794e72c43a334cb2eab3b7478e9723f158d23b4
sha256: 3eb6bb86d499301cddc83f6f082848df1f23e04ff92385708f76e9203bda5702
sha512: 4367b701e5d5f7c95a811c55a4c76fe06793eb33ae012133323b6b05cc60116fe8ef3513d6b5d7c315c71d2d1c1f6afdb9d0aed0a3bb9ff04f82bf26b7ea65d7
ssdeep: 98304:7kLquZr6MH43W3aH5s0L3+R11bcNqPohNSDDUaMVan8SVaMzIzkH955lj8:wBHZqhL3+pb2hNk2YnRVaMs2rnY
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T12756123BF268A13EC5AE1B3205739250997BBA61790ACC1E07FC390DCF765601E3B656
sha3_384: 93126ce1f677f06958f28f2eb83666c15eaa597afd83f85d37509633140e3c9cae05b6d7a8a8cf71ac30d645a79cac24
ep_bytes: 558bec83c4a453565733c08945c48945
timestamp: 2022-04-14 16:10:23


Version Info:

Comments: This installation was built with Inno Setup.
CompanyName:                                                             
FileDescription: installeer Setup                                            
FileVersion:                     
LegalCopyright:                                                                                                     
OriginalFileName:                                                   
ProductName: installeer                                                  
ProductVersion: 102.001.02                                        
Translation: 0x0000 0x04b0

UDS:Trojan-Downloader.Win32.Satacom also known as:

Cybereasonmalicious.c43a33
CyrenW32/Convagent.AH.gen!Eldorado
CynetMalicious (score: 99)
KasperskyUDS:Trojan-Downloader.Win32.Satacom
F-SecureHeuristic.HEUR/AGEN.1251348
AviraHEUR/AGEN.1251348
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GoogleDetected
RisingMalware.Obscure/Heur!1.A89F (CLASSIC)
AVGFileRepMalware [Misc]
AvastFileRepMalware [Misc]
CrowdStrikewin/grayware_confidence_60% (D)

How to remove UDS:Trojan-Downloader.Win32.Satacom?

UDS:Trojan-Downloader.Win32.Satacom removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment