Ransom Trojan

About “UDS:Trojan-Ransom.Multi.GenericML.xnet” infection

Malware Removal

The UDS:Trojan-Ransom.Multi.GenericML.xnet is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Trojan-Ransom.Multi.GenericML.xnet virus can do?

  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine UDS:Trojan-Ransom.Multi.GenericML.xnet?



File Info:

crc32: ECD726EB
md5: c2f989a24b4dd2f070acd580550e1c9e
name: C2F989A24B4DD2F070ACD580550E1C9E.mlw
sha1: eeb5a601481a2ac984c17a6e7bb12596cb5b7701
sha256: 8556612e1863eadfcdd300445f72a7f564e038c1dad696b8c74bb93780c27b62
sha512: 80b6d207f18c7e53c7f8e9a23ef8f142ac4db13a09dc9be4fe9dd93a56ab4a7037f046631d62ff94d7668b3b3548ffd6ca3340b834a08271e0dd3e0472bf77f9
ssdeep: 96:VJTA2HdMYSmMxAkt2qOgXL5hY/D2aw06ToQDF8W8cv3Bp1zNt:TTFMYSmMxA+JOv/KawD8W8cXP
type: PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows


Version Info:

Translation: 0x0000 0x04b0
LegalCopyright: xa9 x41ax43ex440x43fx43ex440x430x446x438x44f x41cx430x439x43ax440x43ex441x43ex444x442. x412x441x435 x43fx440x430x432x430 x437x430x449x438x449x435x43dx44b.
Assembly Version: 1.0.0.0
InternalName: Loader.exe
FileVersion: 1.0.0.0
CompanyName: Microsoft Corporation
LegalTrademarks: x417x430x433x43bx443x448x43ax430 Windows Winhlp64
Comments: x417x430x433x43bx443x448x43ax430 Windows Winhlp64
ProductName: ChinaTestTrojan
ProductVersion: 1.0.0.0
FileDescription: x41ex43fx435x440x430x446x438x43ex43dx43dx430x44f x441x438x441x442x435x43cx430 Microsoftxae Windowsxae
OriginalFilename: Loader.exe

UDS:Trojan-Ransom.Multi.GenericML.xnet also known as:

LionicTrojan.Multi.GenericML.j!c
McAfeeRDN/Ransom
CrowdStrikewin/malicious_confidence_60% (W)
APEXMalicious
CynetMalicious (score: 100)
KasperskyUDS:Trojan-Ransom.Multi.GenericML.xnet
MicroWorld-eScanTrojan.GenericKD.37521271
Ad-AwareTrojan.GenericKD.37521271
BitDefenderThetaGen:NN.ZemsilF.34126.am0@aKWBbti
McAfee-GW-EditionArtemis!Trojan
FireEyeTrojan.GenericKD.37521271
MicrosoftTrojan:Win32/Sabsik.FL.A!ml
GDataTrojan.GenericKD.37521271

How to remove UDS:Trojan-Ransom.Multi.GenericML.xnet?

UDS:Trojan-Ransom.Multi.GenericML.xnet removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment