Malware

About “Ursu.939413” infection

Malware Removal

The Ursu.939413 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Ursu.939413 virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Ursu.939413?



File Info:

name: DDC459AFD60822A09CC0.mlw
path: /opt/CAPEv2/storage/binaries/dfaa92e2a37a31bc0277535c941612814c975e40eec878c13ce6f45964bf501e
crc32: E03AF69F
md5: ddc459afd60822a09cc09f54b6de62b7
sha1: 57f7c1cf2b8193da3d24c86b24ca9d31de86b397
sha256: dfaa92e2a37a31bc0277535c941612814c975e40eec878c13ce6f45964bf501e
sha512: 95e1990207d1a9f4fe4b32f75ce1378427b402ace73b22b8044a8a5f63ad649e2cb03cc71fe9fce693dc052582ca8ef21bc6fe4444f9a52976ebb995244296d0
ssdeep: 3072:i86bAkDwltXulfWu3jaa7eY0sIezHpu9iRXXUYadie2KCLBCYKFgBYrfOYHV/yeB:ObO+FJ3xaY0sIihpW2rLFwvyt4J
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T19054AF0276D5C8B7E7B126700CF6977A6A35FD644A36CB47A380CF2D5C72681993B322
sha3_384: d81f891f9dd834a73270af9048d6e731c4d71ce795cd9a25d0b8c1af4748083a4ce5a368116c566ea2da5d3cd9c0fa63
ep_bytes: 558bec6aff6830d0420068e8d9400064
timestamp: 1998-12-25 14:38:43


Version Info:

CompanyName: The Strangely Green Chicken Company
FileDescription: Removes temporary files. Helps protect privacy!  :-)
FileVersion: 2.0.0
InternalName: CleanUp!
LegalCopyright: Copyright 1998-1999 Strangely Green Chicken Co.
OriginalFilename: cleanup.exe
ProductName: Windows CleanUp!
ProductVersion: 2.0.0
Translation: 0x0409 0x04b0

Ursu.939413 also known as:

BkavW32.Common.122D1B11
LionicTrojan.Win32.Ursu.4!c
MicroWorld-eScanGen:Variant.Ursu.939413
FireEyeGen:Variant.Ursu.939413
McAfeeArtemis!DDC459AFD608
Cylanceunsafe
ZillyaTrojan.Agent2.Win32.31958
SangforPUP.Win32.Presenoker.V7qs
BitDefenderGen:Variant.Ursu.939413
EmsisoftGen:Variant.Ursu.939413 (B)
VIPREGen:Variant.Ursu.939413
McAfee-GW-EditionArtemis
Trapminemalicious.moderate.ml.score
GDataGen:Variant.Ursu.939413
ArcabitTrojan.Ursu.DE5595
MicrosoftPUA:Win32/Presenoker
ALYacGen:Variant.Ursu.939413
TrendMicro-HouseCallTROJ_GEN.R002H09EG23
RisingPUA.Presenoker!8.F608 (CLOUD)
MaxSecureTrojan.Malware.12050933.susgen
BitDefenderThetaGen:NN.ZexaE.36662.ru0@a4SGgNji
DeepInstinctMALICIOUS

How to remove Ursu.939413?

Ursu.939413 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment