What is “Virus:Win32/Virut.BR”?

The Virus:Win32/Virut.BR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Virus:Win32/Virut.BR virus can do?

Drops a binary and executes it
The binary likely contains encrypted or compressed data.
Sniffs keystrokes
Anomalous binary characteristics

How to determine Virus:Win32/Virut.BR?


File Info:
crc32: FFAEFB8A
md5: 5343c66b74534dfe8d04f54bdddb3568
name: mfsjxgq_ttrar.exe
sha1: 0feb1804b1131de1cb0d6b069e7b5fb40ef428f8
sha256: 64c7c0eb3dc3c2c0de1a8886cf8da25880779b26e13af0d7d786a9d82a5e6e44
sha512: c4950572f2e7cb28bd6690aec911a76880dfd244ab20d1a8933550da82443922c57120e9fbbd697ed85634c74a7583fb829975cf27928766e36f4f11138c1e67
ssdeep: 98304:KyX77WiiumKprHOn6usY6VQrwJKW3F5aPqVnx+:KyXOiiMusYxw5CqVx+
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
0: [No Data]

Virus:Win32/Virut.BR also known as:

Bkav	W32.Vetor.PE
MicroWorld-eScan	Win32.Virtob.Gen.12
CAT-QuickHeal	W32.Virut.G
Qihoo-360	Virus.Win32.VirutChangeCall.J
McAfee	W32/Virut.ae.gen
Cylance	Unsafe
VIPRE	Virus.Win32.Virut.ce (v)
Sangfor	Malware
K7AntiVirus	Unwanted-Program ( 004eb0fd1 )
BitDefender	Win32.Virtob.Gen.12
K7GW	Unwanted-Program ( 004eb0fd1 )
Cybereason	malicious.b74534
TrendMicro	PE_VIRUX.S-4
Baidu	Win32.Virus.Virut.gen
F-Prot	W32/Virut.X.gen!Eldorado
TotalDefense	Win32/Virut.17408
APEX	Malicious
Avast	Win32:Vitro
ClamAV	Win.Tool.Cheatengine-6956730-0
GData	Win32.Riskware.Hacktool.D
Kaspersky	Virus.Win32.Virut.ce
Alibaba	Virus:Win32/Virut.a2656a3f
NANO-Antivirus	Virus.Win32.Virut.hpeg
ViRobot	Win32.Virut.Gen.C
AegisLab	Virus.Win32.Virut.n!c
Tencent	Virus.Win32.Virut.Gen.200010
Ad-Aware	Win32.Virtob.Gen.12
Emsisoft	Application.GameCheat (A)
Comodo	Virus.Win32.Virut.CE@1fhkga
F-Secure	Malware.W32/Virut.Gen
DrWeb	modification of Win32.Virut.56
Zillya	Virus.Virut.Win32.26
Invincea	heuristic
McAfee-GW-Edition	BehavesLike.Win32.PUPXAR.wc
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.5343c66b74534dfe
Sophos	W32/Scribble-B
Ikarus	Virus.Win32.Virut
Cyren	W32/Virut.X.gen!Eldorado
Jiangmin	Win32/Virut.bt
Avira	W32/Virut.Gen
Antiy-AVL	Trojan[Packed]/Win32.PolyCrypt
Kingsoft	Win32.Virut.nf.53248
Endgame	malicious (high confidence)
Arcabit	Win32.Virtob.Gen.12
ZoneAlarm	Virus.Win32.Virut.ce
Microsoft	Virus:Win32/Virut.BR
TACHYON	Virus/W32.Virut.Gen
AhnLab-V3	Win32/Virut.E
Acronis	suspicious
MAX	malware (ai score=100)
VBA32	Virus.Virut.06
Panda	W32/Sality.AO
ESET-NOD32	Win32/Virut.NBP
TrendMicro-HouseCall	PE_VIRUX.S-4
Rising	Virus.Virut!1.A08B (CLOUD)
Yandex	Win32.Virut.Y.Gen
SentinelOne	DFI – Malicious PE
eGambit	Unsafe.AI_Score_100%
Fortinet	W32/Virut.CE.gen
BitDefenderTheta	AI:FileInfector.C9457D4313
AVG	Win32:Vitro
Paloalto	generic.ml
CrowdStrike	win/malicious_confidence_80% (W)
MaxSecure	Virus.Virut.CE

How to remove Virus:Win32/Virut.BR?

Virus:Win32/Virut.BR removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X