Malware

Win32/Downloader.Agent.NAQ potentially unsafe information

Malware Removal

The Win32/Downloader.Agent.NAQ potentially unsafe is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Downloader.Agent.NAQ potentially unsafe virus can do?

  • Reads data out of its own binary image
  • Unconventionial binary language: Chinese (Simplified)
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • Network activity detected but not expressed in API logs
  • Anomalous binary characteristics

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Win32/Downloader.Agent.NAQ potentially unsafe?



File Info:

crc32: 6D3967B3
md5: 13227703d020dd199c2938c84b718f00
name: 13227703D020DD199C2938C84B718F00.mlw
sha1: dcfa2c81131d2c269d0a7cdb70f09eeed3162270
sha256: dcb1d735c30d590da1941df6358d07b0b9a139b79919b89b38d9c9b6bd85ab04
sha512: 8fa3120b26d441806fa97b17993dfaf871c5477bd6cc25c8c780c29bc7ec5c31674ec49b963743b8ae83841b9a3b26620371d103e715694574eb366cb3ad1b27
ssdeep: 6144:t5O8mGNYSCWHvmi3/E5Uxhwy5dIwKbfYVH2fDMycroCfnAP1xdJJBbGPM2LAHJwk:KoPNPmi3/Jl5VObMyAG1HXJ6KeAUe
type: PE32 executable (GUI) Intel 80386, for MS Windows, Nullsoft Installer self-extracting archive


Version Info:

LegalCopyright: ZuoJian Soft
ProductName: x95eax7535x6d4fx89c8x5668
FileDescription: x95eax7535x6d4fx89c8x5668x5378x8f7dx7a0bx5e8f
FileVersion: 2.4.1.9
CompanyName: ZuoJian Soft
Translation: 0x0804 0x03a8

Win32/Downloader.Agent.NAQ potentially unsafe also known as:

BkavW32.AIDetectVM.malware1
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
Cybereasonmalicious.1131d2
Paloaltogeneric.ml
ClamAVWin.Downloader.84425-1
NANO-AntivirusTrojan.Win32.MLW.dmrvze
ComodoApplication.Win32.MeinV.AK@57p4lw
DrWebDLOADER.Trojan
McAfee-GW-EditionBehavesLike.Win32.Dropper.gc
SentinelOneStatic AI – Suspicious PE – Adware
APEXMalicious
MaxSecureTrojan-Dropper.Win32.Agent.emlq
Antiy-AVLGrayWare[Downloader]/Win32.Adload.gen
CynetMalicious (score: 90)
VBA32TrojanDropper.Agent
ESET-NOD32a variant of Win32/Downloader.Agent.NAQ potentially unsafe
FortinetW32/Genome.GZKI!tr.dldr
AVGWin32:Malware-gen
AvastWin32:Malware-gen
CrowdStrikewin/malicious_confidence_100% (D)
Qihoo-360HEUR/QVM42.1.0000.Malware.Gen

How to remove Win32/Downloader.Agent.NAQ potentially unsafe?

Win32/Downloader.Agent.NAQ potentially unsafe removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment