Malware

Win32:Agent-BCLB [Trj] removal guide

Malware Removal

The Win32:Agent-BCLB [Trj] is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win32:Agent-BCLB [Trj] virus can do?

  • The binary contains an unknown PE section name indicative of packing
  • Authenticode signature is invalid

How to determine Win32:Agent-BCLB [Trj]?



File Info:

name: 8A725026792643D0D347.mlw
path: /opt/CAPEv2/storage/binaries/a0b2eb8e2bdfc7cfa9aa66ebb6f649b4c6891bd0c80b9222ab0ab91bfa0d9d37
crc32: 897ED0C5
md5: 8a725026792643d0d3474bb8632fc138
sha1: 7bc8c3c4ae8ea4e98732f4b14b49e820493fb752
sha256: a0b2eb8e2bdfc7cfa9aa66ebb6f649b4c6891bd0c80b9222ab0ab91bfa0d9d37
sha512: ab9dadfbe14595439e6250e1cd3299ceedcd8494321d7f0f9d340ba3ea21b9c915f18116513431d79e4c0f0fde905df9c81214ef513377549df4adbcb52c755d
ssdeep: 1536:B83ezqch33g1k+J0JJdqgrqyzI9DtGXpgXk/xuDnVAxZKxCQi0ElsWC:BAezqchhqgpzI9Y5gXk/xaVdxCa9
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T10A938C11B5C1C072C9B32C31457ADAB11E2CEE701B688DDB93981975AF742D0A639EBB
sha3_384: 3ad7799a83373215d979454d6a88711985badafdb04d979e6a5b671317fb768d5a8c63e22a1a3ce1177367e95ef9df6d
ep_bytes: e808030000e98efeffff3b0d24a04100
timestamp: 2020-08-11 13:51:33


Version Info:

0: [No Data]

Win32:Agent-BCLB [Trj] also known as:

BkavW32.AIDetect.malware1
LionicTrojan.Win32.Generic.4!c
FireEyeGeneric.mg.8a725026792643d0
CAT-QuickHealTrojan.GenericPMF.S15421963
McAfeeGenericRXLT-VG!8A7250267926
AlibabaTrojan:Win32/Generic.6c9fff86
Cybereasonmalicious.679264
SymantecTrojan.Gen.2
TrendMicro-HouseCallTROJ_GEN.R002H06KQ21
ClamAVWin.Malware.Midie-9622157-0
AvastWin32:Agent-BCLB [Trj]
TencentTrojan.Win32.BitCoinMiner.la
McAfee-GW-EditionBehavesLike.Win32.Generic.mh
SentinelOneStatic AI – Suspicious PE
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Agent.R348307
MalwarebytesMalware.AI.1339983382
APEXMalicious
RisingMalware.Heuristic!ET#95% (RDMK:cmRtazovY4oqKP+qELLIEEA0MGBk)
IkarusTrojan.Win32.Agent
FortinetW32/PossibleThreat
AVGWin32:Agent-BCLB [Trj]
CrowdStrikewin/malicious_confidence_70% (W)

How to remove Win32:Agent-BCLB [Trj]?

Win32:Agent-BCLB [Trj] removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment