Malware

Win64/Bolik.G (file analysis)

Malware Removal

The Win64/Bolik.G is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Win64/Bolik.G virus can do?

  • The binary likely contains encrypted or compressed data.

How to determine Win64/Bolik.G?



File Info:

crc32: 87A2BD90
md5: c5d5c96a5d8b2f39afbaddf76b5d5479
name: C5D5C96A5D8B2F39AFBADDF76B5D5479.mlw
sha1: b0b0ca5202562205d094e49ce6205ee37ee01be2
sha256: 5be2cb4bd408f5d7fda438caeab9b15af5a7a68e1c002bb1a423b899af16444f
sha512: ec44541339ca45507b49a0613f1f8030c5c53016baadaf1cac33ffcd4316187d15113fb223084af236fae47c4484922c9bb00eb17d23e23cd9eb72915f0df619
ssdeep: 12288:bQdNLBs0o+XEohQ7XlJSSxVL2zOUBUI808kDooSzZY9HQhmdjt:uV2j+X67XOS72z5NLSdY9H71
type: PE32+ executable (console) x86-64, for MS Windows


Version Info:

LegalCopyright: xa9 Microsoft Corporation. All rights reserved.
InternalName: Sort
FileVersion: 5.2.3790.1830 (srv03_sp1_rtm.050324-1447)
CompanyName: Microsoft Corporation
ProductName: Microsoftxae Windowsxae Operating System
ProductVersion: 5.2.3790.1830
FileDescription: Sort Utility
OriginalFilename: Sort.EXE
Translation: 0x0409 0x04b0

Win64/Bolik.G also known as:

Elasticmalicious (high confidence)
DrWebWin32.Bolik.1
CAT-QuickHealW64.Tpun.A7
ALYacWin64.Bolik.Gen
CylanceUnsafe
SangforTrojan.Win32.Save.a
CrowdStrikewin/malicious_confidence_80% (D)
K7GWVirus ( 005092211 )
K7AntiVirusVirus ( 005092211 )
SymantecW64.Bolik.A!inf
ESET-NOD32a variant of Win64/Bolik.G.gen
AvastWin32:Bolik-A
CynetMalicious (score: 99)
KasperskyVirus.Win64.Tpun.a
BitDefenderWin64.Bolik.Gen
NANO-AntivirusVirus.Win64.Tpun.ejvowt
MicroWorld-eScanWin64.Bolik.Gen
TencentWin64.Virus.Tpun.Taev
Ad-AwareWin64.Bolik.Gen
SophosMal/Generic-S
VIPRETrojan.Win32.Generic!BT
McAfee-GW-EditionW64/Bolik!C5D5C96A5D8B
FireEyeGeneric.mg.c5d5c96a5d8b2f39
EmsisoftWin64.Bolik.Gen (B)
AviraTR/Patched.Bolik.Gen8
MicrosoftTrojan:Win32/Wacatac.B!ml
ArcabitWin64.Bolik.Gen
GDataWin64.Bolik.Gen
McAfeeW64/Bolik!C5D5C96A5D8B
MAXmalware (ai score=88)
PandaGeneric Suspicious
IkarusTrojan.Win64.Patched
FortinetW64/Tpun.A
AVGWin32:Bolik-A
Paloaltogeneric.ml

How to remove Win64/Bolik.G?

Win64/Bolik.G removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment