Malware

Win32/Agent_AGen.DDU removal instruction

Malware Removal

The Win32/Agent_AGen.DDU is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Agent_AGen.DDU virus can do?

  • Sample contains Overlay data
  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Win32/Agent_AGen.DDU?



File Info:

name: 603A9B133FF79667E02A.mlw
path: /opt/CAPEv2/storage/binaries/c0b503e4ece8c5885edb4998b92567550bf67a3e995706084add36268de0d178
crc32: 894046F4
md5: 603a9b133ff79667e02a246c69398a73
sha1: 430b83cda8f4801050ca65831bc08ac4d963b438
sha256: c0b503e4ece8c5885edb4998b92567550bf67a3e995706084add36268de0d178
sha512: 8eb8088939bf39d5bb32bf3398e8135c591e2b9aea2409ce2dc7469b2adcf522be1a88f651fe621e9d060a15ae3b9f4aa233352ee245a00495a2e20ec2f958fa
ssdeep: 768:HvATm9m0VSPP3lLuzZPKqck3eGec8poRi:Hv2+ZSPP3lLuBZcyec8/
type: PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
tlsh: T10AF2B6997E404CFBEA501B3984E6C7762A7CF191C6238F63F650B7304A33796219B16E
sha3_384: 99d77b44d566542e6b73954ad5a3be1e3da9610d1beaa5244eeb3577d5829f2b7393f187a6c1394bf0b5fbe85a6e0b52
ep_bytes: 57565383ec108b5c24248b7424208b7c
timestamp: 2024-02-09 10:36:13


Version Info:

0: [No Data]

Win32/Agent_AGen.DDU also known as:

MicroWorld-eScanGen:Trojan.Heur.PT.c46@am6ChKm
FireEyeGeneric.mg.603a9b133ff79667
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Agent_AGen.DDU
CynetMalicious (score: 100)
BitDefenderGen:Trojan.Heur.PT.c46@am6ChKm
AvastWin32:TrojanX-gen [Trj]
EmsisoftGen:Trojan.Heur.PT.c46@am6ChKm (B)
F-SecureTrojan.TR/Dropper.Gen
VIPREGen:Trojan.Heur.PT.c46@am6ChKm
GDataGen:Trojan.Heur.PT.c46@am6ChKm
AviraTR/Dropper.Gen
ArcabitTrojan.Heur.PT.ECD38A
MicrosoftTrojan:Win32/Wacatac.B!ml
BitDefenderThetaAI:Packer.A9ED4B951E
ALYacGen:Trojan.Heur.PT.c46@am6ChKm
MAXmalware (ai score=80)
RisingTrojan.Agent!8.B1E (TFE:5:ZwpErTPJ7AD)
SentinelOneStatic AI – Suspicious PE
AVGWin32:TrojanX-gen [Trj]
DeepInstinctMALICIOUS

How to remove Win32/Agent_AGen.DDU?

Win32/Agent_AGen.DDU removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment