Worm.Datunif.A malicious file

The Worm.Datunif.A is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

6-day free trial available.

What Worm.Datunif.A virus can do?

Authenticode signature is invalid

How to determine Worm.Datunif.A?


File Info:
name: 782ED9225CCFEEA46BDB.mlw
path: /opt/CAPEv2/storage/binaries/05831245c7d995b8c021969710d24d55e7dba8b202f20e33cb7b4753d7a9177a
crc32: 9B29DA82
md5: 782ed9225ccfeea46bdb4b392991e94e
sha1: 3d0adb8e229265e72f6f5edf6e623b5e3071eebd
sha256: 05831245c7d995b8c021969710d24d55e7dba8b202f20e33cb7b4753d7a9177a
sha512: c6ef432b12078025dd8f45660d823fdedb7c02c004224e71a2980b5b66114f2a4c563bd96be396e68bc408478d10d127202ae0df8c4c5b1cc2a9112c45633d15
ssdeep: 768:YcUliTdqWpAl+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:HUIxTpAcqOK3qowgnt1d
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T161632063B6B35C4AD5C27DBA2B878DE60533904D0F5336A2F250872DFA28E21159BF53
sha3_384: c7cc3e48d2e803205ae2f59e6c88e02d7135846e645ff3c3ec234279f5e534f2ce9a9836365443cba7a2894f5535e0f5
ep_bytes: 68f4114000e8eeffffff000000000000
timestamp: 2009-06-17 14:24:34

Version Info:
Translation: 0x0409 0x04b0

Worm.Datunif.A also known as:

Bkav	W32.AIDetectMalware
Lionic	Worm.Win32.Basun.lwAE
AVG	Win32:AutoRun-AYY [Wrm]
Elastic	malicious (high confidence)
MicroWorld-eScan	Gen:Trojan.Chinky.2
CAT-QuickHeal	Worm.Datunif.A
Skyhigh	BehavesLike.Win32.VBObfus.km
McAfee	W32/VBNA.worm.gen.c
Cylance	unsafe
VIPRE	Gen:Trojan.Chinky.2
Sangfor	Suspicious.Win32.Save.vb
K7AntiVirus	EmailWorm ( 000dc83c1 )
Alibaba	Trojan:Win32/Starter.ali2000005
K7GW	EmailWorm ( 000dc83c1 )
Baidu	Win32.Trojan.VB.q
Symantec	W32.Changeup
tehtris	Generic.Malware
ESET-NOD32	Win32/TrojanDownloader.VB.NZX
Cynet	Malicious (score: 100)
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Trojan.VB-1042
Kaspersky	Worm.Win32.Basun.ajp
BitDefender	Gen:Trojan.Chinky.2
NANO-Antivirus	Trojan.Win32.Basun.bakqn
SUPERAntiSpyware	Trojan.Agent/Gen-NameThief[Smart]
Avast	Win32:AutoRun-AYY [Wrm]
Rising	Trojan.DL.Win32.VBcode.ij (CLASSIC)
Emsisoft	Gen:Trojan.Chinky.2 (B)
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Win32.HLLW.Autoruner2.24570
Zillya	Worm.Basun.Win32.18780
TrendMicro	WORM_VB.TOT
Trapmine	malicious.high.ml.score
FireEye	Generic.mg.782ed9225ccfeea4
Sophos	W32/Datunif-A
SentinelOne	Static AI – Malicious PE
Jiangmin	Worm/Basun.abfu
Varist	W32/VB.W.gen!Eldorado
Avira	TR/Dropper.Gen
MAX	malware (ai score=99)
Antiy-AVL	Trojan[Downloader]/Win32.VB
Kingsoft	Win32.Worm.Basun.ajp
Microsoft	Worm:Win32/Vobfus.F
Xcitium	Worm.Win32.Basun.ajp0@14jyik
Arcabit	Trojan.Chinky.2
ZoneAlarm	Worm.Win32.Basun.ajp
GData	Gen:Trojan.Chinky.2
Google	Detected
AhnLab-V3	Win32/Basun.worm.Gen
Acronis	suspicious
BitDefenderTheta	AI:Packer.DD73FADD1F
ALYac	Gen:Trojan.Chinky.2
TACHYON	Trojan/W32.VB-Agent.69632.AQ
VBA32	Trojan-Downloader.VB.NZX
Malwarebytes	Generic.Malware.AI.DDS
Panda	Trj/Downloader.WFP
TrendMicro-HouseCall	WORM_VB.TOT
Tencent	Worm.Win32.Basun.a
Yandex	Trojan.GenAsa!9OBQBLME9hg
Ikarus	Trojan.VB.Inject
MaxSecure	Worm.W32.Basun.ajp
Fortinet	W32/VBNA.G!tr
DeepInstinct	MALICIOUS
alibabacloud	Worm:Win/Basun.ajp

How to remove Worm.Datunif.A?

Worm.Datunif.A removal tool

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

Leave a Comment X