Should I remove “Win32/TrojanDownloader.Agent.EYB”?

The Win32/TrojanDownloader.Agent.EYB is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Win32/TrojanDownloader.Agent.EYB virus can do?

Authenticode signature is invalid

How to determine Win32/TrojanDownloader.Agent.EYB?


File Info:
name: EA628FEF3B547A1476D9.mlw
path: /opt/CAPEv2/storage/binaries/f2c60274e625bcb051909797b35095dc5f37fae155cfdd96287c4ac112664a65
crc32: 10F799FC
md5: ea628fef3b547a1476d915963415e64c
sha1: 07dbfaa430a201ce81f5079dd1e48379fac27177
sha256: f2c60274e625bcb051909797b35095dc5f37fae155cfdd96287c4ac112664a65
sha512: 9140bb21f2ccf5f217dfad8cd8e70a073b3001f00817629307ee134211ee03c105c6baaa993b5d6ea35947336dcd50f85444a3adc6e859566eb133399a65aa89
ssdeep: 1536:UwVcbcQUXlyBjCgBvt5EiQuCdFfrazkIiV0k:xx29p/Yfr8iV0k
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T17B535D16B7A1C032E8A2197449B5C2734ABB7C3257B5C187BF841B695EF03C0AA79377
sha3_384: 8fc18a22a0381a9de41486b591fed7e1fc381df9460508f91a4113e4a1cc96c41853d2304aec0388bbd7884bde9d4bb2
ep_bytes: e872300000e989feffff8bff558bec81
timestamp: 2019-12-22 13:31:23

Version Info:
0: [No Data]

Win32/TrojanDownloader.Agent.EYB also known as:

Lionic	Trojan.Win32.Generic.4!c
Elastic	malicious (high confidence)
FireEye	Generic.mg.ea628fef3b547a14
McAfee	Trojan-Agent.f
Cylance	Unsafe
Sangfor	Trojan.Win32.GenericKD.3
Cybereason	malicious.f3b547
Symantec	ML.Attribute.HighConfidence
ESET-NOD32	Win32/TrojanDownloader.Agent.EYB
APEX	Malicious
Paloalto	generic.ml
Kaspersky	Trojan-Downloader.Win32.Agent.xxzkdq
Alibaba	TrojanDownloader:Win32/ATTACKBOTDLR.ea63e827
NANO-Antivirus	Trojan.Win32.Ursu.ispuwv
Avast	Win32:Trojan-gen
Rising	Downloader.Agent!8.B23 (CLOUD)
Comodo	TrojWare.Win32.ButeRat.PP@4roeaa
Zillya	Downloader.Agent.Win32.403261
TrendMicro	TROJ_ATTACKBOTDLR.ZLGL-A
McAfee-GW-Edition	Trojan-Agent.f
Sophos	Mal/Generic-S
SentinelOne	Static AI – Malicious PE
Antiy-AVL	Trojan/Generic.ASMalwS.50E6
Kingsoft	Win32.Troj.Generic_a.a.(kcloud)
ZoneAlarm	Trojan-Downloader.Win32.Agent.xxzkdq
Microsoft	Trojan:Win32/Occamy.CF2
Google	Detected
ALYac	Trojan.Downloader.Agent
MAX	malware (ai score=99)
VBA32	suspected of Trojan.Downloader.gen
TrendMicro-HouseCall	TROJ_ATTACKBOTDLR.ZLGL-A
Ikarus	Trojan-Downloader.Win32.Agent
MaxSecure	Trojan.Malware.82347189.susgen
Fortinet	W32/Agent.EYB!tr
BitDefenderTheta	Gen:NN.ZexaF.34646.duW@aWQuqzmi
AVG	Win32:Trojan-gen
Panda	Trj/GdSda.A
CrowdStrike	win/malicious_confidence_100% (W)

How to remove Win32/TrojanDownloader.Agent.EYB?

Win32/TrojanDownloader.Agent.EYB removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X