Malware

Ursu.402272 removal

Malware Removal

The Ursu.402272 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.402272 virus can do?

  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Anomalous .NET characteristics

How to determine Ursu.402272?



File Info:

name: 116B72CA379B1471229B.mlw
path: /opt/CAPEv2/storage/binaries/6f1bafc804e1c96a55f6de1b7d1194ee9c3cd154bf7e4234a5626a268d2b8e1e
crc32: 22A5E5AC
md5: 116b72ca379b1471229b59be975ab780
sha1: a809b00ea218e085f5a3c58a6aed9afa9c24e3b5
sha256: 6f1bafc804e1c96a55f6de1b7d1194ee9c3cd154bf7e4234a5626a268d2b8e1e
sha512: 18adcf146e0dbe335fc4b38fe17fd17e46adcc0ba40b02787b288760bf902a850403d4bd6acce0ba9a96b363cbff9ec9c461b15b1189bbdb05c5d520438736f7
ssdeep: 3072:BltiZu/TA/ntymztkyTaTNdAvmz5AMt3oyRBeBH8wvqgAFJ1+fjVPYPBgiQVQ0Vy:BltiKksBgiYQNUJ
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1D434433036A7914DDC2A47701C3991C127B63A597E14CBDD68DA174CDE62B238B22BFB
sha3_384: daec2f37b561242b56e51ea21e5c1cc03d90b60c6aa88770986e85bb82bfe429a1b3fef3a6387f12cdcaddaff8bd89c3
ep_bytes: ff250020400000000000000000000000
timestamp: 2018-06-15 14:27:26


Version Info:

Translation: 0x0000 0x04b0
FileDescription:  
FileVersion: 0.0.0.0
InternalName: AntiPublic.exe
LegalCopyright:  
OriginalFilename: AntiPublic.exe
ProductVersion: 0.0.0.0
Assembly Version: 0.0.0.0

Ursu.402272 also known as:

LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Variant.Ursu.402272
FireEyeGeneric.mg.116b72ca379b1471
McAfeeArtemis!116B72CA379B
CylanceUnsafe
SangforTrojan.Win32.Occamy.C
BitDefenderThetaGen:NN.ZemsilF.34062.om0@aC6rSzn
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Generik.DIZPCPT
Paloaltogeneric.ml
BitDefenderGen:Variant.Ursu.402272
AvastWin32:Malware-gen
TencentWin32.Trojan.Ursu.Dvpz
Ad-AwareGen:Variant.Ursu.402272
SophosMal/Generic-S
McAfee-GW-EditionArtemis!Trojan
EmsisoftGen:Variant.Ursu.402272 (B)
IkarusTrojan.SuspectCRC
GDataGen:Variant.Ursu.402272
WebrootW32.Malware.Gen
ArcabitTrojan.Ursu.D62360
MicrosoftTrojan:Win32/Occamy.C6F
AhnLab-V3Unwanted/Win32.Agent.C2634377
ALYacGen:Variant.Ursu.402272
MAXmalware (ai score=88)
MaxSecureTrojan.Malware.300983.susgen
FortinetPossibleThreat
AVGWin32:Malware-gen
Cybereasonmalicious.a379b1
PandaTrj/GdSda.A

How to remove Ursu.402272?

Ursu.402272 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment