The Zbot.224 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.
What Zbot.224 virus can do?
ip-addr.es |
myexternalip.com |
curlmyip.com |
mcigbonline.com |
getstarstar.com |
dhae.org |
izzhoga.su |
springflingevent.ca |
dugunburada.com |
uxdubai.com |
File Info:
name: BD6402B7C1CA7EA107B3.mlwpath: /opt/CAPEv2/storage/binaries/10c55b6c3e2d6b4a11d3efcd06f14197f94db07575c180f3c74f79943aff10b1crc32: 309E8261md5: bd6402b7c1ca7ea107b34cdaea8577e8sha1: c565ff732f15c081f85ddbb85d876e3b19c96f45sha256: 10c55b6c3e2d6b4a11d3efcd06f14197f94db07575c180f3c74f79943aff10b1sha512: f773d99ca9dc3dd4a0c83ca80b45dc1d52a44e0d4b053d4316bacbcd7969d97b99c2cb1fb96f01025308a78aa0f5d3d8387d41a92d54948c1afc10eea434d367ssdeep: 3072:62W3B4zxHO8pzTYxvjgjmz99dRblyu+GXWjaLAcjJenSzBjONYNUtUS75DKXdz7O:62WWxHjhTukjmNDGSjASdaHtUdXZUws3type: PE32 executable (GUI) Intel 80386, for MS Windowstlsh: T18724F0D696C60D96EA45C53064F919BEA2BE68CF7F52C7AB8345FE4E48B3BD0013201Dsha3_384: bc003dfe57a6bde00bcf99a8c1bba162b24ba74b7d0da480a32e753791da9fb33efe3e40dd65edc9a02a42762a558e72ep_bytes: 558bec6aff68a05f400068c040400064timestamp: 2015-06-29 13:37:43Version Info:
0: [No Data]
Bkav | W32.AIDetect.malware2 |
Lionic | Trojan.Win32.Cryptodef.j!c |
Elastic | malicious (high confidence) |
MicroWorld-eScan | Gen:Variant.Zbot.224 |
FireEye | Generic.mg.bd6402b7c1ca7ea1 |
CAT-QuickHeal | TrojanPWS.Zbot.A4 |
McAfee | Generic-FAWK!BD6402B7C1CA |
Cylance | Unsafe |
VIPRE | Trojan.Win32.Generic!BT |
K7AntiVirus | Trojan ( 00508c2e1 ) |
BitDefender | Gen:Variant.Zbot.224 |
K7GW | Trojan ( 00508c2e1 ) |
Cybereason | malicious.7c1ca7 |
BitDefenderTheta | Gen:NN.ZexaF.34294.nqW@aCa5I!rL |
Symantec | Ransom.Enciphered |
ESET-NOD32 | Win32/Filecoder.CryptoWall.D |
TrendMicro-HouseCall | TROJ_CRYPWALL.SMF |
Paloalto | generic.ml |
ClamAV | Win.Dropper.Zbot-9864934-0 |
Kaspersky | HEUR:Trojan.Win32.Generic |
Alibaba | Ransom:Win32/Crowti.b65a9ac5 |
NANO-Antivirus | Trojan.Win32.Cryptodef.dtkvoq |
ViRobot | Trojan.Win32.CryptoLocker.286720.C |
Tencent | Malware.Win32.Gencirc.10b54def |
Ad-Aware | Gen:Variant.Zbot.224 |
TACHYON | Backdoor/W32.Androm.225280.R |
Emsisoft | Gen:Variant.Zbot.224 (B) |
Comodo | Malware@#1um2nngoyxdvt |
DrWeb | Trojan.Siggen6.40373 |
Zillya | Trojan.Cryptodef.Win32.423 |
TrendMicro | TROJ_CRYPWALL.SMF |
McAfee-GW-Edition | BehavesLike.Win32.Emotet.dc |
SentinelOne | Static AI – Malicious PE |
Sophos | ML/PE-A + Mal/Zbot-UE |
APEX | Malicious |
Jiangmin | Backdoor/Androm.lrf |
MaxSecure | Trojan.Malware.300983.susgen |
Avira | TR/Dropper.Gen |
Antiy-AVL | Trojan/Generic.ASMalwS.11EDD3A |
Kingsoft | Win32.Troj.GenericKD.v.(kcloud) |
Microsoft | Ransom:Win32/Crowti.A |
SUPERAntiSpyware | Trojan.Agent/Gen-Ransom |
GData | Gen:Variant.Zbot.224 |
Cynet | Malicious (score: 100) |
AhnLab-V3 | Trojan/Win32.Ransomcrypt.R155717 |
Acronis | suspicious |
ALYac | Gen:Variant.Zbot.224 |
VBA32 | Heur.Malware-Cryptor.Hlux |
Panda | Trj/Genetic.gen |
Rising | Malware.Obscure/Heur!1.A89E (CLASSIC) |
Yandex | Trojan.GenAsa!rAU6vF3ieSo |
Ikarus | Trojan.Agent |
eGambit | Unsafe.AI_Score_94% |
Fortinet | W32/Injector.CDYR!tr |
Webroot | W32.Trojan.Gen |
AVG | Win32:Teerac-R [Trj] |
Avast | Win32:Teerac-R [Trj] |
CrowdStrike | win/malicious_confidence_100% (W) |
The Trojan:Win32/Vidar!MSR is considered dangerous by lots of security experts. When this infection is active,…
The Generik.BKSFVZU is considered dangerous by lots of security experts. When this infection is active,…
The Win32/Danmec.C is considered dangerous by lots of security experts. When this infection is active,…
The Lazy.462416 is considered dangerous by lots of security experts. When this infection is active,…
The Trojan.Generic.35568731 is considered dangerous by lots of security experts. When this infection is active,…
The Generic.Malware.Ydr.7B09EE28 is considered dangerous by lots of security experts. When this infection is active,…