Virus

Virus:Win32/Virut.AU information

Malware Removal

The Virus:Win32/Virut.AU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Virus:Win32/Virut.AU virus can do?

  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Virus:Win32/Virut.AU?



File Info:

name: A78E316F512A9F122076.mlw
path: /opt/CAPEv2/storage/binaries/dae83231bc61f1082b2c459cb01f9f1509baa3098d81f9f51a0bfbcf7f614b6d
crc32: C70C1301
md5: a78e316f512a9f12207646ad08d44340
sha1: 6cfeb55c6aff954b8f9086b46b2a0187131d1a64
sha256: dae83231bc61f1082b2c459cb01f9f1509baa3098d81f9f51a0bfbcf7f614b6d
sha512: 18bbae035fbf8cc0a25267c6d1a3443a688839f90dc314a310ff0ce52a32c7461b2c879522ed7b8d2bd1594c7c07ee0b504ab8f473efe9b101c78be383f8eaa6
ssdeep: 24576:WeXZH5/2lTmD7Y05p2DuIjm0IUmJ7jGc:WeXZH5WV6wyXxUmxqc
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T14B25F61267F95235F5B32EF55AB9A2A407367C70AE31C68F428141AF2971A91CD30FB3
sha3_384: 146984c8279d17863189184dc2f2e6a8cfc80e91aae55f399e83f3e7b7f9f69de22600bce79cbc2b2a2f44946d0d9045
ep_bytes: f9e822000000ff31eb56e76853b9f50f
timestamp: 2009-07-13 23:24:50


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft® Volume Shadow Copy Service
FileVersion: 6.1.7600.16385 (win7_rtm.090713-1255)
InternalName: VSSVC.EXE
LegalCopyright: © Microsoft Corporation. All rights reserved.
OriginalFilename: VSSVC.EXE
ProductName: Microsoft® Windows® Operating System
ProductVersion: 6.1.7600.16385
Translation: 0x0409 0x04b0

Virus:Win32/Virut.AU also known as:

BkavW32.VtLightL.PE
LionicVirus.Win32.Virut.kZgv
MicroWorld-eScanWin32.Virut.V
FireEyeGeneric.mg.a78e316f512a9f12
CAT-QuickHealW32.Virut.E
SkyhighBehavesLike.Win32.Virut.fh
McAfeeW32/Virut.t.j
MalwarebytesGeneric.Malware/Suspicious
ZillyaVirus.Virut.Win32.77
SangforVirus.Win32.Virut.Vlid
CrowdStrikewin/malicious_confidence_100% (W)
AlibabaVirus:Win32/Virut.2f03
K7GWVirus ( 00001b6d1 )
K7AntiVirusVirus ( 00001b6d1 )
BitDefenderThetaAI:FileInfector.362E9E870D
VirITWin32.Virut.BX
SymantecW32.Virut.W
Elasticmalicious (high confidence)
ESET-NOD32Win32/Virut.NBI
APEXMalicious
TrendMicro-HouseCallPE_VIRUT.BA
ClamAVWin.Trojan.Virut-396
KasperskyVirus.Win32.Virut.bx
BitDefenderWin32.Virut.V
NANO-AntivirusVirus.Win32.Virut.hpeg
AvastWin32:Virtob [Inf]
TencentVirus.Win32.Virut.bx
TACHYONVirus/W32.Virut.Gen
EmsisoftWin32.Virut.V (B)
BaiduWin32.Virus.Virut.b
F-SecureMalware.W32/Virut.CQ
DrWebWin32.Virut.64
VIPREWin32.Virut.V
TrendMicroPE_VIRUT.BA
Trapminesuspicious.low.ml.score
SophosW32/Virut-Gen
IkarusVirus.Win32.Virut
JiangminWin32/Virut.bk
GoogleDetected
AviraW32/Virut.CQ
VaristW32/Virut.B!Generic
Antiy-AVLVirus/Win32.Virut.bx
KingsoftWin32.Virut.xf.57344
MicrosoftVirus:Win32/Virut.AU
XcitiumVirus.Win32.Virut.BX@fb1r0
ArcabitWin32.Virut.V
ViRobotWin32.Virut.AK
ZoneAlarmVirus.Win32.Virut.bx
GDataWin32.Virut.V
CynetMalicious (score: 100)
AhnLab-V3Win32/Virut.Gen
VBA32Virus.Win32.Virut.bx
ALYacWin32.Virut.V
MAXmalware (ai score=100)
Cylanceunsafe
PandaGeneric Malware
ZonerProbably Heur.ExeHeaderL
RisingWin32.Agent.ck (CLASSIC)
YandexWin32.Virut.Gen.4
SentinelOneStatic AI – Malicious PE
FortinetW32/Virut.NBI
AVGWin32:Virtob [Inf]
Cybereasonmalicious.f512a9
DeepInstinctMALICIOUS
alibabacloudVirus:Win/Virut.NBI

How to remove Virus:Win32/Virut.AU?

Virus:Win32/Virut.AU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment