Malware

Ursu.728548 (B) information

Malware Removal

The Ursu.728548 (B) is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.728548 (B) virus can do?

  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Ursu.728548 (B)?



File Info:

name: 782B92E21F82263E77F3.mlw
path: /opt/CAPEv2/storage/binaries/414ed6b1223f5042e4d54c23dd9fc80eea24f290763ee778999293508accfbe5
crc32: 65CB82FF
md5: 782b92e21f82263e77f38233a76bef21
sha1: ad46a347e76ac4c1419ee75902eff7c01e0cd1bd
sha256: 414ed6b1223f5042e4d54c23dd9fc80eea24f290763ee778999293508accfbe5
sha512: 1d1f3969e00052586d0784f3742ea78dd25d675ea82b0d07d27c1e5330fd9d3e73099a1700ccf2f1205c408b167d29697a3fd330b9866787f1d29f0c67cd6b5d
ssdeep: 384:uZIUDgG/R8ZF0/Q9Q0ER4aFc/BdMLpYc+WKDJ:uZIUkIEFkQHEnc/M1Kd
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T197C2EA1752CEBEE6C9B80670373393D1C36DEE019413DA2E59D0752AD9BE2037A927D8
sha3_384: 212aa08c96769fe67001f8f4a7b3043f7c6c5c9c0c970ed39ce1e61d2de03002afbe2f5871e10e09be1476c1434d37c6
ep_bytes: ff250020400000000000000000000000
timestamp: 2021-05-27 22:02:35


Version Info:

Translation: 0x0000 0x04b0
FileDescription: D
FileVersion: 1.0.0.0
InternalName: D.exe
LegalCopyright: Copyright ©  2021
OriginalFilename: D.exe
ProductName: D
ProductVersion: 1.0.0.0
Assembly Version: 1.0.0.0

Ursu.728548 (B) also known as:

MicroWorld-eScanGen:Variant.Ursu.728548
FireEyeGeneric.mg.782b92e21f82263e
ALYacGen:Variant.Ursu.728548
K7AntiVirusP2PWorm ( 004b8b111 )
K7GWP2PWorm ( 004b8b111 )
Cybereasonmalicious.21f822
SymantecML.Attribute.HighConfidence
APEXMalicious
KasperskyHEUR:Trojan.MSIL.Crypt.gen
BitDefenderGen:Variant.Ursu.728548
AvastWin32:RATX-gen [Trj]
Ad-AwareGen:Variant.Ursu.728548
EmsisoftGen:Variant.Ursu.728548 (B)
SentinelOneStatic AI – Malicious PE
GDataGen:Variant.Ursu.728548
AviraHEUR/AGEN.1108902
Antiy-AVLTrojan/Generic.ASMalwS.3419DFB
ArcabitTrojan.Ursu.DB1DE4
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
CynetMalicious (score: 99)
AhnLab-V3Trojan/Win.MSILKrypt09.C4510519
MAXmalware (ai score=80)
VBA32TScope.Trojan.MSIL
MalwarebytesTrojan.Crypt.MSIL
IkarusTrojan-Downloader.MSIL.Small
MaxSecureTrojan.Malware.300983.susgen
BitDefenderThetaGen:NN.ZemsilF.34084.bq0@aGMcARk
AVGWin32:RATX-gen [Trj]
PandaTrj/GdSda.A

How to remove Ursu.728548 (B)?

Ursu.728548 (B) removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment