Worm:Win32/Bropia.AI removal guide

The Worm:Win32/Bropia.AI is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.

DOWNLOAD NOW

6-day free trial available.

What Worm:Win32/Bropia.AI virus can do?

Executable code extraction
The binary likely contains encrypted or compressed data.
Uses Windows utilities for basic functionality
Installs itself for autorun at Windows startup
Network activity detected but not expressed in API logs
Anomalous binary characteristics

Related domains:

z.whorecord.xyz

a.tomx.xyz

How to determine Worm:Win32/Bropia.AI?


File Info:
crc32: A84ECCE0
md5: 282611ba8c67197eb0e25100b50988d1
name: 282611BA8C67197EB0E25100B50988D1.mlw
sha1: 083ed4921596c9ca1fdeac21ea9d01e18d0961be
sha256: f0d7db1198a40c7852890c6f98ebe3cf31976223c047bb1b9826a5bd33550440
sha512: 4148443c65853609d25be9a92f5b214f8d9c1a7882d316831ff3f2767f31185bb61f31d6ce6123d99017998834ff76acb9d0f13716aa07403da3cf90c8fa9917
ssdeep: 3072:Koqx3TljogCxifnrdG58wU3Tc52W/UW5HF/pnsychpjhy8AHh:Ko2RsgCxenrd3wMTc52W/Z/poh1gDH
type: PE32 executable (GUI) Intel 80386, for MS Windows

Version Info:
Translation: 0x0409 0x04b0
LegalCopyright: Accido
InternalName: Accido
FileVersion: 1.00
CompanyName: DISTS
LegalTrademarks: Accido
Comments: Accido
ProductName: Accido
ProductVersion: 1.00
FileDescription: Accido
OriginalFilename: Accido.exe

Worm:Win32/Bropia.AI also known as:

Bkav	W32.AIDetectGBM.malware.01
Elastic	malicious (high confidence)
MicroWorld-eScan	Trojan.GenericKD.40337404
FireEye	Generic.mg.282611ba8c67197e
Qihoo-360	Win32/Worm.Generic.HgIASOQA
ALYac	Trojan.GenericKD.40337404
Cylance	Unsafe
VIPRE	Trojan.Win32.Generic.pak!cobra
Sangfor	Trojan.Win32.Save.a
K7AntiVirus	P2PWorm ( 0055e3ea1 )
BitDefender	Trojan.GenericKD.40337404
K7GW	P2PWorm ( 0055e3ea1 )
Cybereason	malicious.a8c671
Cyren	W32/Kelvir.JWWC-5771
Symantec	W32.SillyIM
TotalDefense	Win32/ForBot.OU
APEX	Malicious
Paloalto	generic.ml
ClamAV	Win.Packer.Morphine-6707441-0
Kaspersky	IM-Worm.Win32.Bropia.bb
Alibaba	Worm:Win32/Bropia.d31f45b4
NANO-Antivirus	Trojan.Win32.Wootbot.baxon
Rising	Worm.VB!8.30 (CLOUD)
Ad-Aware	Trojan.GenericKD.40337404
Emsisoft	Trojan.GenericKD.40337404 (B)
Comodo	Worm.Win32.VB.NDB@4hsa
F-Secure	Trojan.TR/Dropper.Gen
DrWeb	Trojan.MulDrop.2293
Zillya	Worm.Bropia.Win32.29
TrendMicro	WORM_WOOTBOT.GEN
McAfee-GW-Edition	BehavesLike.Win32.VirRansom.ch
CMC	Generic.Win32.282611ba8c!MD
Sophos	Mal/Generic-R
SentinelOne	Static AI – Suspicious PE
Jiangmin	Worm.Bropia.d
Webroot	Worm:Win32/Bropia.AI
Avira	TR/Dropper.Gen
MAX	malware (ai score=100)
Antiy-AVL	Trojan[Backdoor]/Win32.Wootbot
Kingsoft	Win32.Heur.KVM006.a.(kcloud)
Microsoft	Worm:Win32/Bropia.AI
Arcabit	Trojan.Generic.D2677FFC
AegisLab	Worm.Win32.VB.q!c
ZoneAlarm	IM-Worm.Win32.Bropia.bb
GData	Trojan.GenericKD.40337404
Cynet	Malicious (score: 100)
AhnLab-V3	Trojan/Win32.Banker.C39224
McAfee	Artemis!282611BA8C67
VBA32	BScope.Trojan.Azden
Malwarebytes	Generic.Malware/Suspicious
Panda	Trj/Multidropper.ANS
ESET-NOD32	Win32/VB.NDB
TrendMicro-HouseCall	WORM_WOOTBOT.GEN
Tencent	Win32.Worm-im.Bropia.Hpry
Yandex	Trojan.GenAsa!6H1VbUzPJ2Y
Ikarus	Trojan.Win32.Agobot
eGambit	Unsafe.AI_Score_99%
Fortinet	W32/Sdbot.C!worm.im
BitDefenderTheta	AI:Packer.784AE2F11F
AVG	Win32:Evo-gen [Susp]
Avast	Win32:Evo-gen [Susp]
CrowdStrike	win/malicious_confidence_60% (D)
MaxSecure	Trojan.Malware.1199920.susgen

How to remove Worm:Win32/Bropia.AI?

Download and install GridinSoft Anti-Malware.
Open GridinSoft Anti-Malware and perform a “Standard scan“.
“Move to quarantine” all items.
Open “Tools” tab – Press “Reset Browser Settings“.
Select proper browser and options – Click “Reset”.
Restart your computer.

Worm:Win32/Bropia.AI removal guide