Malware

About “Win32/ThunderNetworking.A potentially unwanted” infection

Malware Removal

The Win32/ThunderNetworking.A potentially unwanted is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32/ThunderNetworking.A potentially unwanted virus can do?

  • Sample contains Overlay data
  • Unconventionial language used in binary resources: Chinese (Simplified)
  • The binary likely contains encrypted or compressed data.
  • Authenticode signature is invalid
  • Anomalous binary characteristics

How to determine Win32/ThunderNetworking.A potentially unwanted?



File Info:

name: A0C43C4D7D30E0B0E576.mlw
path: /opt/CAPEv2/storage/binaries/0080fcb77b25a92851baa11064e3055383b4504393fe36aa371c61bf4ac5c8ca
crc32: 6F7271A2
md5: a0c43c4d7d30e0b0e57604089ea336e3
sha1: d6404c469704f28b8fec1362907d34c6715fad80
sha256: 0080fcb77b25a92851baa11064e3055383b4504393fe36aa371c61bf4ac5c8ca
sha512: e7b209d9a4e15483a047c2b5704c0b9a24511b37e5ac9c6558723c218212cb1531b3bb607fca39733c66c7b44d1f13ccf8c32f42fdadcc9c2c8178e65ec1eeeb
ssdeep: 98304:F/S52aFPsIMfe2xkT/Wu32mw1MT/x2KqVE8ZkgXPG5MmV1bCDTx:QwssxfeOkyG2piT/5qVLkgXCdy
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10606332132E19133C05B2B7A9CA6957996FAF8261C60950B33FD9B5A2F31FD3C708794
sha3_384: f2a24a097e19ca7e859fa260d26203853b66bf3d106b0596515390808d8ee644d900777b153c5fe4a9894805faf1fdb7
ep_bytes: e886a00000e978feffff8bff558bec56
timestamp: 2014-10-20 04:04:04


Version Info:

0: [No Data]

Win32/ThunderNetworking.A potentially unwanted also known as:

McAfeeArtemis!A0C43C4D7D30
CylanceUnsafe
K7AntiVirusUnwanted-Program ( 0056626f1 )
K7GWUnwanted-Program ( 0056626f1 )
ESET-NOD32a variant of Win32/ThunderNetworking.A potentially unwanted
ClamAVWin.Worm.Runouce-301
McAfee-GW-EditionBehavesLike.Win32.Dropper.wc
Trapminesuspicious.low.ml.score
SophosGeneric PUA NG (PUA)
IkarusPUA.ThunderNetworking
MicrosoftPUA:Win32/Presenoker
VBA32Trojan.Wacatac
RisingTrojan.Generic@AI.96 (RDML:KzO1ChNgRH9ndLp+tuhY/Q)
FortinetW32/Generic_PUA_NG.A

How to remove Win32/ThunderNetworking.A potentially unwanted?

Win32/ThunderNetworking.A potentially unwanted removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment