Worm

How to remove “Worm.Copali.OD3”?

Malware Removal

The Worm.Copali.OD3 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Worm.Copali.OD3 virus can do?

  • Behavioural detection: Executable code extraction – unpacking
  • Dynamic (imported) function loading detected
  • Authenticode signature is invalid
  • Installs itself for autorun at Windows startup
  • Attempts to modify Explorer settings to prevent hidden files from being displayed

How to determine Worm.Copali.OD3?



File Info:

name: 3325334F0DFA8DA3D0A2.mlw
path: /opt/CAPEv2/storage/binaries/a983132110ed8c1c4bc1a28106f85e6269a6c131ae240d0a19787ecf082172b5
crc32: 0995647B
md5: 3325334f0dfa8da3d0a2ef12844b70b4
sha1: 4d3e308ad02369f01623f54eb55eb9ec295004dc
sha256: a983132110ed8c1c4bc1a28106f85e6269a6c131ae240d0a19787ecf082172b5
sha512: 59bbb4211eace0c463dbb2c350cccbee73e53c8fe281039f92ea663e707b6f94a7e41176b62307055253271e5ba7459c2028c58aac1f878265e2c45fdc82ddd6
ssdeep: 3072:FVMKsWKxlGxE07ABigCFHdLYyBvzyBHNGqXgvnHZyzi0zslLFOw/FzKsR:b3sWKxQ52CFHdLYKvzyZNGX/IupB2s
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T1C704436BF121C054E59240B8742CEA9AF45C7E7305446972FB81BB5939B27EFA0F6B03
sha3_384: 1c2dcb8d1cfb8f5d60345446fd4379d4f9a9a2d77e2cdb2b9554f858409eb15c3d1d305df5aa99670a35fc2fe0989063
ep_bytes: 6868784000e8f0ffffff000000000000
timestamp: 2008-06-14 06:05:58


Version Info:

Translation: 0x0409 0x04b0
ProductName: Project1
FileVersion: 1.00
ProductVersion: 1.00
InternalName: DOCUMENT
OriginalFilename: DOCUMENT.exe

Worm.Copali.OD3 also known as:

BkavW32.AIDetect.malware1
MicroWorld-eScanBackdoor.VB.Agent.ABT
FireEyeGeneric.mg.3325334f0dfa8da3
CAT-QuickHealWorm.Copali.OD3
ALYacBackdoor.VB.Agent.ABT
CylanceUnsafe
ZillyaTrojan.Swisyn.Win32.32299
Sangfor[MICROSOFT VISUAL BASIC 5.0]
K7AntiVirusP2PWorm ( 00486ea71 )
K7GWP2PWorm ( 00486ea71 )
Cybereasonmalicious.f0dfa8
BaiduWin32.Worm.VB.bf
VirITTrojan.Win32.VB2.ADGJ
CyrenW32/A-0d9bc26b!Eldorado
SymantecW32.SillyFDC
Elasticmalicious (high confidence)
ESET-NOD32Win32/VB.OLE
APEXMalicious
ClamAVWin.Dropper.Cerber-7134131-0
KasperskyTrojan.Win32.Agentb.btmh
BitDefenderBackdoor.VB.Agent.ABT
NANO-AntivirusTrojan.Win32.TrjGen.deyzgg
SUPERAntiSpywareTrojan.Agent/Gen-Kazy
AvastWin32:Vitro [Inf]
TencentTrojan.Win32.Agentb.zt
Ad-AwareBackdoor.VB.Agent.ABT
TACHYONTrojan/W32.Agent.184320
SophosMal/Generic-R + Troj/VB-HTM
ComodoTrojWare.Win32.Swisyn.DFX@5ci87q
DrWebTrojan.Siggen6.19362
VIPREBackdoor.VB.Agent.ABT
TrendMicroWorm.Win32.COPALI.SM
McAfee-GW-EditionBehavesLike.Win32.VBObfus.cm
Trapminemalicious.high.ml.score
EmsisoftBackdoor.VB.Agent.ABT (B)
SentinelOneStatic AI – Malicious PE
GDataBackdoor.VB.Agent.ABT
JiangminTrojan/Swisyn.wsw
AviraTR/Beebone.rhwnabs
Antiy-AVLTrojan/Generic.ASMalwS.F6
ArcabitBackdoor.VB.Agent.ABT
ViRobotTrojan.Win32.Zbot.184320.D
ZoneAlarmTrojan.Win32.Agentb.btmh
MicrosoftWorm:Win32/Copali.B
CynetMalicious (score: 100)
AhnLab-V3Trojan/Win32.Zbot.R106377
McAfeeW32/Worm-GAM!3325334F0DFA
MAXmalware (ai score=86)
VBA32Trojan.Agentb
MalwarebytesTrojan.Agent
TrendMicro-HouseCallWORM_COPALI_EJ200083.UVPM
RisingWorm.Copali!1.A2C3 (CLASSIC)
YandexTrojan.Swisyn!HYP92Tvnrcg
IkarusTrojan.Win32.Agentb
MaxSecureTrojan.Malware.300983.susgen
FortinetW32/Generic.AC.1EEAF!tr
BitDefenderThetaAI:Packer.1ADCCC0C1F
AVGWin32:Vitro [Inf]
PandaGeneric Malware
CrowdStrikewin/malicious_confidence_100% (W)

How to remove Worm.Copali.OD3?

Worm.Copali.OD3 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment