Malware

Ursu.402910 information

Malware Removal

The Ursu.402910 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.402910 virus can do?

  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Ursu.402910?



File Info:

name: B076CA08B9A2637B7C19.mlw
path: /opt/CAPEv2/storage/binaries/9a5bda9758e56b11bf0a54aa2ecf26a691db213d871b057e60855207f6195d17
crc32: 51833CE7
md5: b076ca08b9a2637b7c19ffd7077a4cba
sha1: d70d7e1323a35015d462daec7614720ca49ed47c
sha256: 9a5bda9758e56b11bf0a54aa2ecf26a691db213d871b057e60855207f6195d17
sha512: 80c37adb8753234ac39df7211d750601320a036cbfa56506442004bb38acfa1cf92a97b7e76ba19ddcf55cb0710130c443172bfe6e456f91fba0b193195ab4df
ssdeep: 768:hXATcSfihUCzw4wsIoLyZZhnCFCK9oPmxNYdt5ICFsJxehrgJH4erVbE2:hQNp4wpJ6CK9oOy71sTeJgJH4epA2
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17963640172D84F4BEA7A4BBC55E049A20FF1AD051522E77D3D8CD85E28F9A80CF9DB52
sha3_384: 1e35baecffcaa1943775db66b7f8547a281e217b9ba9b8447d1cae0d2b95b4decddf6abea79105156e11a331b27991ed
ep_bytes: ff250020400000000000000000000000
timestamp: 2014-12-27 20:32:11


Version Info:

Translation: 0x0000 0x04b0
CompanyName: Toshiba
FileDescription: Cracker
FileVersion: 1.0.0.0
InternalName: cracker.exe
LegalCopyright: Copyright © Toshiba 2014
OriginalFilename: cracker.exe
ProductName: Cracker
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Ursu.402910 also known as:

LionicTrojan.Win32.Generic.4!c
MicroWorld-eScanGen:Variant.Ursu.402910
SkyhighArtemis
McAfeeArtemis!B076CA08B9A2
VIPREGen:Variant.Ursu.402910
BitDefenderGen:Variant.Ursu.402910
APEXMalicious
FireEyeGen:Variant.Ursu.402910
EmsisoftGen:Variant.Ursu.402910 (B)
MAXmalware (ai score=85)
ArcabitTrojan.Ursu.D625DE
GDataGen:Variant.Ursu.402910
ALYacGen:Variant.Ursu.402910
DeepInstinctMALICIOUS
Cylanceunsafe
TrendMicro-HouseCallTROJ_GEN.R002H09IU23
MaxSecureTrojan.Malware.74312894.susgen

How to remove Ursu.402910?

Ursu.402910 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment