VBA.Heur2.Amphitryon.1266.Gen information

Malware Removal

The VBA.Heur2.Amphitryon.1266.Gen is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What VBA.Heur2.Amphitryon.1266.Gen virus can do?

  • The office file contains 2 macros
  • The office file contains a macro with auto execution
  • The office file contains anomalous features
  • The office file contains a macro with suspicious strings

Related domains:

z.whorecord.xyz

How to determine VBA.Heur2.Amphitryon.1266.Gen?


File Info:

crc32: 45AF6D1F
md5: b25fea4b068237b32b9f07ee7283ec3d
name: upload_file
sha1: f301c8c45eaee2abd259042614d99023218415d8
sha256: 3199024c14912493d637c88ae08b8050bdf85ea6356730c1117850e130d1669a
sha512: 5067526553f2dc064ee3d9816e0594c18dfea3d3b2f95943e3cc5c27a1ca407a82f2c54b3101634881bcdf2f31a39447359e75fb746629c6ce6ad4457068b645
ssdeep: 3072:aj6yw1MgpQiBhGWb6esLbTh8YuyDRBFtdfGknBAQUt4oZhwya:aHgtEWPsL/aTyT9GkqQUtFZhwya
type: Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, Code page: 1252, Title: Exercitationem., Author: Yanis Roussel, Template: Normal.dotm, Revision Number: 1, Name of Creating Application: Microsoft Office Word, Create Time/Date: Thu Aug 20 08:44:00 2020, Last Saved Time/Date: Thu Aug 20 08:44:00 2020, Number of Pages: 1, Number of Words: 3, Number of Characters: 19, Security: 0

Version Info:

0: [No Data]

VBA.Heur2.Amphitryon.1266.Gen also known as:

Elasticmalicious (high confidence)
MicroWorld-eScanVBA.Heur2.Amphitryon.1266.Gen
FireEyeVBA.Heur2.Amphitryon.1266.Gen
CAT-QuickHealOLE.Emotet.38799
ALYacTrojan.Downloader.DOC.Gen
K7AntiVirusTrojan ( 0056c3f41 )
K7GWTrojan ( 0056c3f41 )
InvinceaMal/DocDl-K
CyrenW97M/Downldr.IE.gen!Eldorado
SymantecW97M.Downloader
TrendMicro-HouseCallTrojan.W97M.POWLOAD.TIOIBEMN
AvastSNH:Script [Dropper]
ClamAVDoc.Downloader.Emotet-9448058-0
KasperskyHEUR:Trojan.MSOffice.SAgent.gen
BitDefenderVBA.Heur2.Amphitryon.1266.Gen
NANO-AntivirusTrojan.Script.Downloader.htfcpy
ViRobotDOC.Z.Agent.241434
TencentHeur.Macro.Generic.h.c3e2df35
Ad-AwareVBA.Heur2.Amphitryon.1266.Gen
F-SecureMalware.W97M/Agent.2957911
DrWebExploit.Siggen2.25074
TrendMicroTrojan.W97M.POWLOAD.TIOIBEMN
SophosMal/DocDl-K
GDataMacro.Trojan-Downloader.Agent.AUK
AviraW97M/Agent.2957911
Antiy-AVLTrojan[Downloader]/MSOffice.Agent.lgm
ArcabitVBA.Heur2.Amphitryon.1266.Gen
AegisLabTrojan.MSOffice.SAgent.4!c
ZoneAlarmHEUR:Trojan.MSOffice.SAgent.gen
MicrosoftTrojanDownloader:O97M/Emotet.CSK!MTB
CynetMalicious (score: 85)
AhnLab-V3Downloader/DOC.Emotet.S1279
McAfeeW97M/Downloader.ddv
MAXmalware (ai score=99)
ZonerProbably Heur.W97Obfuscated
ESET-NOD32VBA/TrojanDownloader.Agent.UCS
RisingMalware.ObfusVBA@ML.99 (VBA)
YandexTrojan.MacroDown.Gen.TN
IkarusTrojan-Downloader.VBA.Emotet
FortinetVBA/Agent.K!tr.dldr
AVGSNH:Script [Dropper]
Qihoo-360virus.office.qexvmc.1065

How to remove VBA.Heur2.Amphitryon.1266.Gen?

VBA.Heur2.Amphitryon.1266.Gen removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment