Worm.Python.Miner malicious file

Malware Removal

The Worm.Python.Miner is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware - Review 2020

GridinSoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend to use GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the TRIAL period.
6-day free trial available.

What Worm.Python.Miner virus can do?

  • Executable code extraction
  • Creates RWX memory
  • Reads data out of its own binary image
  • The binary likely contains encrypted or compressed data.
  • Uses Windows utilities for basic functionality

Related domains:

z.whorecord.xyz
a.tomx.xyz

How to determine Worm.Python.Miner?


File Info:

crc32: 1E5CCFFB
md5: a9d4007c9419a6e8d55805b8f8f52de0
name: photo.scr
sha1: 9f9d47ec6dd80bfcb4c3e0a1530b89d2d587c230
sha256: 5d9fe2735d4399d98e6e6a792b1feb26d6f2d9a5d77944ecacb4b4837e5e5fca
sha512: df727118e22be2c36c14bca3d084a7260f085bf528bfdc1da8467bc5adb654c34e20367ed733593810d9d54e9ca0137c015a4a34f09cb06d1145e60cbf16aecf
ssdeep: 98304:RLVSThOfTCiFBXmfFs+JMHpCVoR8oMEOJ6Ty3RvX+jb5jC3ajz4F4VRc:HBfTCiUswVSLOJgyBGv5jGQW4VR
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:

0: [No Data]

Worm.Python.Miner also known as:

BkavW32.ArdamaxNBK.Trojan
Elasticmalicious (high confidence)
MicroWorld-eScanTrojan.GenericKD.43575713
CAT-QuickHealTrojan.Phominer
Qihoo-360Win32/Virus.RiskTool.435
McAfeeArtemis!A9D4007C9419
CylanceUnsafe
VIPRETrojan.Win32.Generic!BT
SangforMalware
K7AntiVirusTrojan ( 0056cbcc1 )
BitDefenderTrojan.GenericKD.43575713
K7GWTrojan ( 0056cbcc1 )
Cybereasonmalicious.c9419a
ArcabitTrojan.Generic.D298E9A1
TrendMicroCoinminer.Win32.MALXMR.TIAOODDC
CyrenW32/Application.CZSM-3654
SymantecML.Attribute.HighConfidence
APEXMalicious
Paloaltogeneric.ml
KasperskyWorm.Python.Miner.gen
AlibabaWorm:Win32/Miner.66c80f98
NANO-AntivirusRiskware.Win32.BitMiner.fnvqyd
Ad-AwareTrojan.GenericKD.43575713
EmsisoftTrojan.GenericKD.43575713 (B)
ComodoWorm.Win32.Bflient.~AD2@3d18gh
F-SecureMalware.HTML/Infected.WebPage.Gen2
DrWebTool.BtcMine.1900
InvinceaGeneric Reputation PUA (PUA)
McAfee-GW-EditionBehavesLike.Win32.Generic.tc
FireEyeGeneric.mg.a9d4007c9419a6e8
SophosMal/Generic-S
SentinelOneDFI – Suspicious PE
WebrootW32.Dropper.Gen
AviraHTML/Infected.WebPage.Gen2
MAXmalware (ai score=100)
MicrosoftTrojan:Win32/Ymacco.AA68
ZoneAlarmWorm.Python.Miner.gen
GDataTrojan.GenericKD.43575713
CynetMalicious (score: 85)
AhnLab-V3Trojan/Win32.Agent.R342010
BitDefenderThetaGen:NN.ZexaF.34298.0nKfaybz@roi
ALYacTrojan.GenericKD.43575713
VBA32Riskware.PythMiner
MalwarebytesTrojan.BitCoinMiner.Python
PandaTrj/CI.A
ESET-NOD32Win32/Crytes.AC
TrendMicro-HouseCallCoinminer.Win32.MALXMR.TIAOODDC
RisingHackTool.CoinMiner!8.F154 (TFE:5:sfGaf7vOO2B)
YandexTrojan.Agent!jKOS93FSwZw
IkarusWorm.Win32.Crytes
eGambitUnsafe.AI_Score_99%
FortinetW32/GenericKD.4266!tr
AVGWin32:Malware-gen
AvastWin32:Malware-gen
CrowdStrikewin/malicious_confidence_100% (W)
MaxSecureWin.MxResIcn.Heur.Gen

How to remove Worm.Python.Miner?

Worm.Python.Miner removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

Leave a Comment