Malware

VirTool:Win32/VBInject.RC removal guide

Malware Removal

The VirTool:Win32/VBInject.RC is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What VirTool:Win32/VBInject.RC virus can do?

  • Executable code extraction
  • Injection (inter-process)
  • Injection (Process Hollowing)
  • Creates RWX memory
  • Unconventionial language used in binary resources: Spanish (Modern)
  • The binary likely contains encrypted or compressed data.
  • Executed a process and injected code into it, probably while unpacking
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

How to determine VirTool:Win32/VBInject.RC?



File Info:

crc32: ABD8C60A
md5: b473b33270c74731b335f26f14d4c170
name: B473B33270C74731B335F26F14D4C170.mlw
sha1: 42bb81627265301edc2631f205dc05215b1c2375
sha256: 03788d9258b4e9e4e5457b52253ff49f14a63c85159bd8640d31863199ab71b1
sha512: 6a1df457936e0039953cfa32f5b169b602736d2870e8df28b1e970a73ce795bb268841b08aec2787a480db5696defebb654117932659cc2c50d58a5cb1ffa9fb
ssdeep: 1536:aQN/CvWH9aCTj9f27liSWAYFzo9tg3oyIlIKTJXGN6Y+UBgfXVH0SnXxY5HZe:JN/CvWH9aIj9f2piSWdFEg3sjevC6Sn
type: PE32 executable (GUI) Intel 80386, for MS Windows


Version Info:

Translation: 0x0c0a 0x04b0
InternalName: cc
FileVersion: 1.00
CompanyName: tt
ProductName: Proyecto1
ProductVersion: 1.00
OriginalFilename: cc.bin

VirTool:Win32/VBInject.RC also known as:

K7AntiVirusTrojan ( 001caaff1 )
LionicWorm.Win32.WBNA.loM5
Elasticmalicious (high confidence)
DrWebBackDoor.IRC.Sdbot.5340
CynetMalicious (score: 100)
ALYacGen:Variant.Buzy.425
CylanceUnsafe
ZillyaTrojan.Injector.Win32.13561
SangforTrojan.Win32.Buzy.425
CrowdStrikewin/malicious_confidence_80% (D)
AlibabaTrojan:Win32/VBKrypt.cbf9bcd8
K7GWTrojan ( 001caaff1 )
Cybereasonmalicious.270c74
CyrenW32/SpyEyes.D.gen!Eldorado
SymantecW32.IRCBot.Gen
ESET-NOD32Win32/Injector.DNH
APEXMalicious
AvastWin32:VB-AAVQ [Trj]
ClamAVWin.Trojan.VB-1331
KasperskyTrojan.Win32.VBKrypt.uld
BitDefenderGen:Variant.Buzy.425
NANO-AntivirusTrojan.Win32.VBKrypt.edfyvj
ViRobotTrojan.Win32.VBKrypt.61440.G
MicroWorld-eScanGen:Variant.Buzy.425
TencentMalware.Win32.Gencirc.11496f98
Ad-AwareGen:Variant.Buzy.425
SophosML/PE-A + Mal/VB-AFC
ComodoMalware@#3ucadnepk5oik
BitDefenderThetaAI:Packer.929E5A001E
VIPRETrojan.Win32.Generic!BT
TrendMicroTROJ_IRCBRUTE.SM
McAfee-GW-EditionBehavesLike.Win32.Generic.mh
FireEyeGeneric.mg.b473b33270c74731
EmsisoftGen:Variant.Buzy.425 (B)
SentinelOneStatic AI – Malicious PE
JiangminTrojan/VBKrypt.dzu
AviraTR/Agent.hddp
Antiy-AVLTrojan/Generic.ASMalwS.74D62
KingsoftWin32.Troj.VBKrypt.u.(kcloud)
MicrosoftVirTool:Win32/VBInject.RC
ArcabitTrojan.Buzy.425
SUPERAntiSpywareTrojan.Agent/Gen-IRCBot
GDataGen:Variant.Buzy.425
AhnLab-V3Trojan/Win32.Seint.R1995
Acronissuspicious
McAfeeW32/Spybot.worm!dt.a
MAXmalware (ai score=100)
VBA32BScope.Malware-Cryptor.VBCR.2512
MalwarebytesTrojan.Zbot
PandaW32/IRCbot.CZR
TrendMicro-HouseCallTROJ_IRCBRUTE.SM
RisingTrojan.VBInject!1.6541 (CLASSIC)
YandexTrojan.GenAsa!xxElKxXCVsw
IkarusVirus.Win32.VBInject
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.201691!tr
AVGWin32:VB-AAVQ [Trj]
Paloaltogeneric.ml

How to remove VirTool:Win32/VBInject.RC?

VirTool:Win32/VBInject.RC removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment