Malware

Win32/Agent.AFBR information

Malware Removal

The Win32/Agent.AFBR is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Agent.AFBR virus can do?

  • Sample contains Overlay data
  • Authenticode signature is invalid
  • CAPE detected the shellcode get eip malware family
  • Yara detections observed in process dumps, payloads or dropped files

How to determine Win32/Agent.AFBR?



File Info:

name: 2122E87510F5E2D477BC.mlw
path: /opt/CAPEv2/storage/binaries/50491e25796a4d1b942865eca2ec8c2c588bac9bcf54f14062e273c83757cc90
crc32: D7A8C151
md5: 2122e87510f5e2d477bc4972548fd3b8
sha1: 4782add5fbf75b69f94beee67c4fd5b36f5c878d
sha256: 50491e25796a4d1b942865eca2ec8c2c588bac9bcf54f14062e273c83757cc90
sha512: c660bed8d1909545775789e95853b692d6c76d2955d722eb12930326bea6d3e24c111ec7becf4c500ffe55e4e7d82882eb3f97ff2f86582934d4833c9d6edd2a
ssdeep: 12288:3Nb8zxr1aWPaHX7dAP57rhUgiW6QR7t5qv3Ooc8UHkC2ej2dH:3Nb8Fpa6aHX7dAP5Kv3Ooc8UHkC2eydH
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T18B9438237A4649F5E1D223F46289932143F9FCA40721B3C3A2EFE1B99F583D56A33951
sha3_384: e0027f538792c24da9520b835adf0f0924c1a509db1fdb129048105b63a47a75dd519388bac23d6f851143945b7b5c5b
ep_bytes: e993f7ffff837d0c017505e826040000
timestamp: 2011-02-19 00:18:09


Version Info:

CompanyName: Microsoft Corporation
FileDescription: Microsoft® C Runtime Library
FileVersion: 10.00.40219.1
InternalName: msvcp100.dll
LegalCopyright: © Microsoft Corporation.  All rights reserved.
OriginalFilename: msvcp100.dll
ProductName: Microsoft® Visual Studio® 2010
ProductVersion: 10.00.40219.1
Translation: 0x0409 0x04b0

Win32/Agent.AFBR also known as:

BkavW32.AIDetectMalware
LionicTrojan.Win32.Patched.4!c
Elasticmalicious (high confidence)
SkyhighArtemis
McAfeeArtemis!2122E87510F5
ZillyaTrojan.Patched.Win32.152764
ESET-NOD32Win32/Agent.AFBR
CynetMalicious (score: 100)
APEXMalicious
AvastWin32:Agent-BDGS [PUP]
KasperskyTrojan.Win32.Patched.gen
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
TencentTrojan.Win32.Patched.16000594
SophosMal/Generic-S
VaristW32/Kryptik.JKH.gen!Eldorado
ZoneAlarmTrojan.Win32.Patched.gen
GoogleDetected
AhnLab-V3Trojan/Win.Agent.R552848
VBA32BScope.Trojan.Convagent
RisingTrojan.ShellCodeRunner!1.F9F6 (CLASSIC)
IkarusTrojan.Win32.Agent
MaxSecureTrojan.Malware.198242064.susgen
FortinetW32/Agent.AFBR!tr
AVGWin32:Agent-BDGS [PUP]
DeepInstinctMALICIOUS
alibabacloudTrojan:Win/Patched.gyf

How to remove Win32/Agent.AFBR?

Win32/Agent.AFBR removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment