Malware

Win32/Injector.ODO removal tips

Malware Removal

The Win32/Injector.ODO is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Injector.ODO virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Win32/Injector.ODO?



File Info:

name: BD4EEB64B10202EC3BB5.mlw
path: /opt/CAPEv2/storage/binaries/14cbdd31bd59207b0c41062f6836c18b44140074add144f4235f1f06ec5cd216
crc32: 495DCD3B
md5: bd4eeb64b10202ec3bb5aa39ec66bbf7
sha1: 9ae515dea38792a8d7c23f1e01fda6c644e7808f
sha256: 14cbdd31bd59207b0c41062f6836c18b44140074add144f4235f1f06ec5cd216
sha512: 1409eb87f6ad46bc114aaa1985538991e0743c4fab263562a2b38ce1151df3ddca1c18684b163f6deb158b5019a1a19f829e8a54524bc212db3bc041760831c3
ssdeep: 3072:2iUntxtm8hADzZAuncafRLnqqWK2++VZOMamfOpB0Bp0Yvq8zbLJQ8gOIV2GnmWy:2HunjfRLqcaYMaIOL0fndfYQLcHi
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T105646D3A292A4127FAB69730DCED5687F56774677AC14F0A24C7130A7C23A937CE052E
sha3_384: 19515f76b148f9cdf45f5225fc71225ebf6fde40b7ab7c6d40c257947431b344475dcbd5adc394415efb96b2a4594566
ep_bytes: 6878114000e8eeffffff000000000000
timestamp: 2022-01-30 10:02:42


Version Info:

Translation: 0x0409 0x04b0
CompanyName: clero serba
FileDescription: curati palma svolga vipera
LegalCopyright: badate tossi lieta 1995
ProductName: arerei
FileVersion: 4.04.0006
ProductVersion: 4.04.0006
InternalName: v2
OriginalFilename: v2.exe

Win32/Injector.ODO also known as:

BkavW32.AIDetect.malware1
Elasticmalicious (high confidence)
CynetMalicious (score: 100)
MalwarebytesTrojan.Injector
SangforSuspicious.Win32.Save.a
BitDefenderTrojan.GenericKD.48185939
CrowdStrikewin/malicious_confidence_100% (W)
SymantecML.Attribute.HighConfidence
ESET-NOD32a variant of Win32/Injector.ODO
APEXMalicious
AvastWin32:Trojan-gen
KasperskyExploit.Win32.Shellcode.agen
AlibabaTrojan:Win32/Injector.b579d855
MicroWorld-eScanTrojan.GenericKD.48185939
RisingTrojan.Injector!8.C4 (CLOUD)
Ad-AwareTrojan.GenericKD.48185939
SophosML/PE-A
McAfee-GW-EditionBehavesLike.Win32.Trojan.fh
FireEyeGeneric.mg.bd4eeb64b10202ec
EmsisoftTrojan.GenericKD.48185939 (B)
MicrosoftTrojan:Win32/Sabsik.FL.B!ml
GDataWin32.Trojan.Agent.UFH8G1
McAfeeRDN/Generic.rp
MAXmalware (ai score=84)
CylanceUnsafe
TrendMicro-HouseCallTROJ_GEN.R002H0DAU22
SentinelOneStatic AI – Malicious PE
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/ODO!tr
BitDefenderThetaGen:NN.ZevbaF.34182.sm0@aKV19QnO
AVGWin32:Trojan-gen
Cybereasonmalicious.ea3879

How to remove Win32/Injector.ODO?

Win32/Injector.ODO removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment