Malware

How to remove “Ursu.878098”?

Malware Removal

The Ursu.878098 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.878098 virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine Ursu.878098?



File Info:

crc32: 38ED3A29
md5: 39a782dbd1d7b255f1f1960d65d4ed6e
name: eg.exe
sha1: 78143de90fa6e9e97f294cfba92c23763c9a875e
sha256: 1798647a383fb41b7617478ecd5bb0a01b0ce45541beaf506c86d8abbfc250e2
sha512: 7b975f03b3621650c40f1726253d2e4dcc0e97d06f4bf79cf5120a65d4742206ee0eea257d30b1eb6514c2d7442a7785ce5849a2362081eb4e1f6d9bdc921d2e
ssdeep: 768:u3PVtm+HV25hVk8vxnCWEwLQQUyTVsY8IvbuB9jpC6tdVIF7k2B/rU:CG+1qHNvxCHwLQRqVsYJvqBZpX4v4
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x0409 0x04b0
InternalName: Hothea
FileVersion: 2.08
CompanyName: A Basis Clap
ProductName: babako
ProductVersion: 2.08
FileDescription: T-Zinc
OriginalFilename: Hothea.exe

Ursu.878098 also known as:

MicroWorld-eScanGen:Variant.Ursu.878098
FireEyeGen:Variant.Ursu.878098
McAfeeFareit-FST!39A782DBD1D7
CylanceUnsafe
BitDefenderGen:Variant.Ursu.878098
BitDefenderThetaGen:NN.ZevbaF.34122.fm0@ay18OPki
ESET-NOD32a variant of Win32/Injector.EMBU
APEXMalicious
GDataGen:Variant.Ursu.878098
KasperskyTrojan.Win32.Vebzenpak.shl
Endgamemalicious (high confidence)
EmsisoftGen:Variant.Ursu.878098 (B)
Trapminesuspicious.low.ml.score
SophosMal/FareitVB-AB
eGambitUnsafe.AI_Score_99%
MAXmalware (ai score=85)
ArcabitTrojan.Ursu.DD6612
ZoneAlarmTrojan.Win32.Vebzenpak.shl
MicrosoftTrojan:Win32/Wacatac.C!ml
Ad-AwareGen:Variant.Ursu.878098
MalwarebytesTrojan.GuLoader.VB
FortinetW32/Injector.EKYQ!tr
Paloaltogeneric.ml

How to remove Ursu.878098?

Ursu.878098 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment