Malware

Win32/Sefnit.CS.Gen removal guide

Malware Removal

The Win32/Sefnit.CS.Gen is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/Sefnit.CS.Gen virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid

How to determine Win32/Sefnit.CS.Gen?



File Info:

name: 5D02049599DB523C3531.mlw
path: /opt/CAPEv2/storage/binaries/7097864b6b7cfb676b082fc0c444128f81b99d012028231294cea2581de3566d
crc32: 9C83AEB7
md5: 5d02049599db523c3531d5565141b06f
sha1: 5688f0e20d66d943cad4926ff86cd4483bd1e301
sha256: 7097864b6b7cfb676b082fc0c444128f81b99d012028231294cea2581de3566d
sha512: b5a6c22806111fcf832405cf565e6382fca083b390be184a5669ddd17c93b389edd6245fda0ef38bd649ecb8e5976ad97907460786205f15c141c22eaf3a12aa
ssdeep: 1536:D9QQVJzkDhfYL/bKgY92VVIVqGBPLmq1YJF9sh9+jj/YRWSn:DmQVuBYLjKNVqGBPLmCYJF9shMjAIS
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T136939C34F544E273EACE01362CD599D9162CA7490B39088B7B1C5A1ABF7B1C6C7193F6
sha3_384: f4a43f3a4fdb90f480cfae6258f02d6b1810baf184ae6e812c71d081f04d2b473060dae8596855e7992ce4306b94a277
ep_bytes: e8ab140000e979feffff8bff558bec8b
timestamp: 2013-06-18 13:46:13


Version Info:

0: [No Data]

Win32/Sefnit.CS.Gen also known as:

BkavW32.AIDetect.malware2
LionicAdware.Win32.Gamevance.ljZ9
FireEyeGeneric.mg.5d02049599db523c
CylanceUnsafe
K7AntiVirusTrojan ( 004707111 )
K7GWTrojan ( 004707111 )
Cybereasonmalicious.20d66d
SymantecML.Attribute.HighConfidence
Elasticmalicious (high confidence)
ESET-NOD32a variant of Win32/Sefnit.CS.Gen
APEXMalicious
NANO-AntivirusTrojan.Win32.RiskGen.cyjufd
AvastWin32:Trojan-gen
TencentWin32.Trojan.Rogue.Svre
SophosML/PE-A
ComodoMalware@#24hnfbo3y2iwp
F-SecureHeuristic.HEUR/AGEN.1242589
McAfee-GW-EditionArtemis
Trapminemalicious.high.ml.score
SentinelOneStatic AI – Malicious PE
WebrootW32.Rogue.Gen
AviraHEUR/AGEN.1242589
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
McAfeeArtemis!5D02049599DB
TrendMicro-HouseCallTROJ_GEN.R002H0CG922
RisingTrojan.Generic@AI.100 (RDML:CuwhgXwfxab3UEhr2COQyQ)
IkarusTrojan.SuspectCRC
FortinetW32/Kryptik.BCOR!tr
BitDefenderThetaGen:NN.ZexaF.34786.fqW@a4m!cafi
AVGWin32:Trojan-gen
PandaTrj/Dtcontx.F
CrowdStrikewin/malicious_confidence_90% (W)

How to remove Win32/Sefnit.CS.Gen?

Win32/Sefnit.CS.Gen removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment