Categories: SpyTrojan

About “UDS:Trojan-Spy.Win32.Pophot.dpey” infection

The UDS:Trojan-Spy.Win32.Pophot.dpey is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What UDS:Trojan-Spy.Win32.Pophot.dpey virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine UDS:Trojan-Spy.Win32.Pophot.dpey?



File Info:

name: 6779CB12C705C8666731.mlwpath: /opt/CAPEv2/storage/binaries/350768ed310a2c9780c0f5f7cf6741f574326069279502c6a6d53a68f4f2b04dcrc32: 3BDE9809md5: 6779cb12c705c86667318a1f87705514sha1: 0b452844f149f3c5041f2185cc4d9ef754d2b1afsha256: 350768ed310a2c9780c0f5f7cf6741f574326069279502c6a6d53a68f4f2b04dsha512: 9aab32ec2ed9fa7d4d6096ff27bc39a0f27d50561d0e2fae71a791b0f004bedfde5dbd35dc3a3fbae7e6aa0c30c751028537d9c9ad71b695b93eb6c7f8cabb46ssdeep: 768:wCPqKQXRmbwPYEbX0A4q6aK94XhljEPp7JmRipKOrqtdRofb8x:XPqKQXRmezvTfXhQtmvjRofIxtype: PE32 executable (console) Intel 80386, for MS Windowstlsh: T12E134B67B3E288B1E860CABD1C38F210EF3B3DB21D74417AA7A5599E4D256914C9C373sha3_384: 2ad1290fb1a3fed52888ff24fcbbf6a0f82b70188c6feee7b7868de317308605e130b4c69cac74fa4e98260f95d7f16aep_bytes: 558bec83c4f05356a1b0934000c60001timestamp: 1992-06-19 22:22:17

Version Info:

0: [No Data]

UDS:Trojan-Spy.Win32.Pophot.dpey also known as:

Elastic malicious (moderate confidence)
Sangfor Trojan.Win32.Pophot.buxin
Cyren W32/A-98954f5c!Eldorado
Symantec ML.Attribute.HighConfidence
APEX Malicious
Cynet Malicious (score: 100)
Kaspersky UDS:Trojan-Spy.Win32.Pophot.dpey
Avast Win32:Malware-gen
McAfee-GW-Edition BehavesLike.Win32.Worm.ph
Trapmine malicious.high.ml.score
SentinelOne Static AI – Suspicious PE
Google Detected
McAfee Artemis!6779CB12C705
VBA32 Trojan.Wacatac
Rising Trojan.Generic@AI.100 (RDML:rLHW4XBGUGd+9hWVqbSREw)
Ikarus Trojan-Spy.Win32.Pophot
MaxSecure Trojan.Malware.300983.susgen
BitDefenderTheta Gen:NN.ZelphiF.34646.cGW@ae6YK4o
AVG Win32:Malware-gen
Cybereason malicious.4f149f
Panda Generic Malware

How to remove UDS:Trojan-Spy.Win32.Pophot.dpey?

  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.
Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment
Share
Published by
Paul Valéry
Tags: UDS:Trojan-Spy.Win32.Pophot.dpey
2 years ago

Recent Posts

Win64/Kryptik.EHF removal instruction

The Win64/Kryptik.EHF is considered dangerous by lots of security experts. When this infection is active,…

32 seconds ago

Application.Generic.3684796 removal

The Application.Generic.3684796 is considered dangerous by lots of security experts. When this infection is active,…

38 seconds ago

How to remove “Win32/RemoteAdmin.NetCat.AA potentially unsafe”?

The Win32/RemoteAdmin.NetCat.AA potentially unsafe is considered dangerous by lots of security experts. When this infection…

11 mins ago

About “WinGo/Agent.EJ” infection

The WinGo/Agent.EJ is considered dangerous by lots of security experts. When this infection is active,…

11 mins ago

About “Backdoor:Win32/IRCbot!pz” infection

The Backdoor:Win32/IRCbot!pz is considered dangerous by lots of security experts. When this infection is active,…

16 mins ago

Generic.Dacic.8952383F.A.4F65C330 removal tips

The Generic.Dacic.8952383F.A.4F65C330 is considered dangerous by lots of security experts. When this infection is active,…

16 mins ago