Bird_banner_small4
Trojan.Win32.Geniczx.A
TSL ID TSL20170316-04
Severity Moderate
Description

Trojan.Win32.Geniczx.A is a Trojan that targets the Windows platform. This malware uses a customized binary protocol that uses a layer of custom encryption to subvert detection. Commands may be accepted that trigger the malware to shutdown the system, get PC & malware status, download and start an executable, download files, and display a message box. This malware was observed to create a system service in order to maintain persistence.

Affected Products
  • Microsoft Windows All Versions
File Hashes
MD5:
  • A96A404A56326DD2113205460947F7A6
SHA1:
  • 1AF3CC27AFF794321222587C4846926B9E8C1C8E
Identifiers
Microsoft Malware Protection Center
Arcabit
  • TROJAN.GRAFTOR.D30665
AVG
  • WIN32/DH{YYJIAW?}
AVware
  • TROJAN.WIN32.REDOSDRU.C
Baidu
  • WIN32.TROJAN.WISDOMEYES.16070401.9500.9999
BitDefender
  • GEN:VARIANT.GRAFTOR.198245
CAT-QuickHeal
  • TROJAN.MALEX.17966
DrWeb
  • TROJAN.DOWNLOADER15.18621
ESET-NOD32
  • WIN32/FARFLI.BLH
F-Prot
  • W32/ZEGOST.AA.GEN!ELDORADO
Invincea
  • BACKDOOR.WIN32.JEDOBOT.A
Qihoo-360
  • HEUR/QVM07.1.0000.MALWARE.GEN
Rising
  • MALWARE.GENERIC.5!TFE
Tencent
  • WIN32.TROJAN.GENERIC.LNEG
Related Threats